467,120 Members | 1,217 Online
Bytes | Developer Community
Ask Question

Home New Posts Topics Members FAQ

Post your question to a community of 467,120 developers. It's quick & easy.

How to access web.config deny and allow users tag values?

Below is the code of web.config file:

<configuration>
<system.web>
<authentication mode="Forms" />
<authorization>
<allow users="Admin"/>
<deny users="Jack,Mary" />
<deny users="?">
</authorization>
</system.web>
</configuration>

I wanna access the deny and allow tag values and authenticate the
users.

Pl. let me the piece of code to work over here.

Thanks for ne kind of pointers too (I did google it myself also)

Jun 6 '06 #1
  • viewed: 15889
Share:
5 Replies
profdotnet,
Actually this is a generic ASP.NET post and probably should have been posted
to the ASP.NET group, not the C# language group.

Hard - coded values in the web.config are just a convenience and are not
designed to be "accessed programmatically". I think what you really want to
do here is set up forms authentication with roles against a data store (such
as SQL Server).
There are a number of articles that show how to do this, including one I
wrote some time ago here:

http://www.eggheadcafe.com/articles/20020906.asp

Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Below is the code of web.config file:

<configuration>
<system.web>
<authentication mode="Forms" />
<authorization>
<allow users="Admin"/>
<deny users="Jack,Mary" />
<deny users="?">
</authorization>
</system.web>
</configuration>

I wanna access the deny and allow tag values and authenticate the
users.

Pl. let me the piece of code to work over here.

Thanks for ne kind of pointers too (I did google it myself also)

Jun 6 '06 #2
Thanks Peter

Can you tell me how does <allow users="Admin"/> <deny
users="Jack,Mary" /> tags really can be used to authenticate
application or is that these tags alone don't work.

Your code link does not deal with such kind of sepcific users in allow
and deny tags.

Infact I would like to know what is the real advantage of adding users
to deny and allow tags and what kind of code can really make use of
such info stored in deny and allow tags.

Hope you make this clear.

Peter wrote:
profdotnet,
Actually this is a generic ASP.NET post and probably should have been posted
to the ASP.NET group, not the C# language group.

Hard - coded values in the web.config are just a convenience and are not
designed to be "accessed programmatically". I think what you really want to
do here is set up forms authentication with roles against a data store (such
as SQL Server).
There are a number of articles that show how to do this, including one I
wrote some time ago here:

http://www.eggheadcafe.com/articles/20020906.asp

Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Below is the code of web.config file:

<configuration>
<system.web>
<authentication mode="Forms" />
<authorization>
<allow users="Admin"/>
<deny users="Jack,Mary" />
<deny users="?">
</authorization>
</system.web>
</configuration>

I wanna access the deny and allow tag values and authenticate the
users.

Pl. let me the piece of code to work over here.

Thanks for ne kind of pointers too (I did google it myself also)


Jun 7 '06 #3
When you perform authentication (typically with forms authentication) each
authenticated user object can be supplied with the list of roles that it
carries.

So, for example, <allow users="Admin"/> would indeed only allow users that
have the "Admin" role attached.
Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Thanks Peter

Can you tell me how does <allow users="Admin"/> <deny
users="Jack,Mary" /> tags really can be used to authenticate
application or is that these tags alone don't work.

Your code link does not deal with such kind of sepcific users in allow
and deny tags.

Infact I would like to know what is the real advantage of adding users
to deny and allow tags and what kind of code can really make use of
such info stored in deny and allow tags.

Hope you make this clear.

Peter wrote:
profdotnet,
Actually this is a generic ASP.NET post and probably should have been posted
to the ASP.NET group, not the C# language group.

Hard - coded values in the web.config are just a convenience and are not
designed to be "accessed programmatically". I think what you really want to
do here is set up forms authentication with roles against a data store (such
as SQL Server).
There are a number of articles that show how to do this, including one I
wrote some time ago here:

http://www.eggheadcafe.com/articles/20020906.asp

Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Below is the code of web.config file:

<configuration>
<system.web>
<authentication mode="Forms" />
<authorization>
<allow users="Admin"/>
<deny users="Jack,Mary" />
<deny users="?">
</authorization>
</system.web>
</configuration>

I wanna access the deny and allow tag values and authenticate the
users.

Pl. let me the piece of code to work over here.

Thanks for ne kind of pointers too (I did google it myself also)


Jun 7 '06 #4
Thanks Peter for explainin'.

I would like to know if users are different from roles in allow tag?

Does page identify allow and deny tag values automatically to
authenticate users?

How do I access allow and deny tag values?

Have a nice time.

Peter wrote:
When you perform authentication (typically with forms authentication) each
authenticated user object can be supplied with the list of roles that it
carries.

So, for example, <allow users="Admin"/> would indeed only allow users that
have the "Admin" role attached.
Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Thanks Peter

Can you tell me how does <allow users="Admin"/> <deny
users="Jack,Mary" /> tags really can be used to authenticate
application or is that these tags alone don't work.

Your code link does not deal with such kind of sepcific users in allow
and deny tags.

Infact I would like to know what is the real advantage of adding users
to deny and allow tags and what kind of code can really make use of
such info stored in deny and allow tags.

Hope you make this clear.

Peter wrote:
profdotnet,
Actually this is a generic ASP.NET post and probably should have been posted
to the ASP.NET group, not the C# language group.

Hard - coded values in the web.config are just a convenience and are not
designed to be "accessed programmatically". I think what you really want to
do here is set up forms authentication with roles against a data store (such
as SQL Server).
There are a number of articles that show how to do this, including one I
wrote some time ago here:

http://www.eggheadcafe.com/articles/20020906.asp

Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:

> Below is the code of web.config file:
>
> <configuration>
> <system.web>
> <authentication mode="Forms" />
> <authorization>
> <allow users="Admin"/>
> <deny users="Jack,Mary" />
> <deny users="?">
> </authorization>
> </system.web>
> </configuration>
>
> I wanna access the deny and allow tag values and authenticate the
> users.
>
> Pl. let me the piece of code to work over here.
>
> Thanks for ne kind of pointers too (I did google it myself also)
>
>



Jun 9 '06 #5
It sounds like a little study is in order. Take a look at this article:

http://www.eggheadcafe.com/articles/20020906.asp
Cheers,
Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Thanks Peter for explainin'.

I would like to know if users are different from roles in allow tag?

Does page identify allow and deny tag values automatically to
authenticate users?

How do I access allow and deny tag values?

Have a nice time.

Peter wrote:
When you perform authentication (typically with forms authentication) each
authenticated user object can be supplied with the list of roles that it
carries.

So, for example, <allow users="Admin"/> would indeed only allow users that
have the "Admin" role attached.
Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com


"profdotnet" wrote:
Thanks Peter

Can you tell me how does <allow users="Admin"/> <deny
users="Jack,Mary" /> tags really can be used to authenticate
application or is that these tags alone don't work.

Your code link does not deal with such kind of sepcific users in allow
and deny tags.

Infact I would like to know what is the real advantage of adding users
to deny and allow tags and what kind of code can really make use of
such info stored in deny and allow tags.

Hope you make this clear.

Peter wrote:
> profdotnet,
> Actually this is a generic ASP.NET post and probably should have been posted
> to the ASP.NET group, not the C# language group.
>
> Hard - coded values in the web.config are just a convenience and are not
> designed to be "accessed programmatically". I think what you really want to
> do here is set up forms authentication with roles against a data store (such
> as SQL Server).
> There are a number of articles that show how to do this, including one I
> wrote some time ago here:
>
> http://www.eggheadcafe.com/articles/20020906.asp
>
>
>
> Peter
>
> --
> Co-founder, Eggheadcafe.com developer portal:
> http://www.eggheadcafe.com
> UnBlog:
> http://petesbloggerama.blogspot.com
>
>
>
>
> "profdotnet" wrote:
>
> > Below is the code of web.config file:
> >
> > <configuration>
> > <system.web>
> > <authentication mode="Forms" />
> > <authorization>
> > <allow users="Admin"/>
> > <deny users="Jack,Mary" />
> > <deny users="?">
> > </authorization>
> > </system.web>
> > </configuration>
> >
> > I wanna access the deny and allow tag values and authenticate the
> > users.
> >
> > Pl. let me the piece of code to work over here.
> >
> > Thanks for ne kind of pointers too (I did google it myself also)
> >
> >


Jun 9 '06 #6

This discussion thread is closed

Replies have been disabled for this discussion.

Similar topics

2 posts views Thread by Tim::.. | last post: by
18 posts views Thread by =?Utf-8?B?VG9t?= | last post: by
By using this site, you agree to our Privacy Policy and Terms of Use.