Security :: Deny Users = "*" Not Working On Webserver?
Feb 21, 2011
I am very new to ASP.net. I am using asp.net 4 on IIS 6. I have another company that has setup the webserver.I have an existing website that is on the same domain that is just plain old .asp, html. The .NET part is for a client dashboard/members area.I just would like to get "deny users" to work in my web.config file. It works on my localhost but it will not work on my web server. I made sure that they created the APP_DATA folder with write permissions, so I can register users and they can login butI can't make a directory that is only for all users.I tried this in the root and created a web.config file in the directory client_area, but nothing worked.
<location path="client_area/MemTest.htm">
<system.web>
<authorization>
[code]...
View 3 Replies
Similar Messages:
Sep 29, 2010
i have a website having a couple of pages,i'd like to allow all users to be able to browse some pages and deny them some web pages.I know it's something to do with creating an authorization tag and adding some allow or deny user,but i have no idea how to implement it.
View 4 Replies
Oct 16, 2010
I want to deny users who have not logged in with a message" you have to login to access this page".C
View 3 Replies
Feb 10, 2010
I was wondering is there a way to redirect a user with a role defined in web.config as "denied", to a page explaining "you are not authorized to see this page" instead of redirecting it to a login page of a form based authorization without automaticaly signing user out?
View 2 Replies
Feb 5, 2011
I would like to know what is the difference between the Allow and Deny ?
View 1 Replies
May 20, 2010
how I can prevent someone from viewing directory list (files) from url?
For example: [URL]... I don't want anyone to see directory list of files under the folder directory by just entering above. I have several project folders for my web app and in each folder, I have a web.config file <authorization><deny users="?" /></authorization> as well as <location> tags. They are working fine from preventing unauthorize access to the .aspx pages and redirecting to login page. But still want to prevent viewing the directory folder.
View 1 Replies
May 27, 2010
i have 2 pages like login.aspx,default.aspx.in login.aspx page iam using the login contr ol.for this i created the users in the configuration manager.when enterting into default using these login id,password it's working fine.when iam copying the default page url from IE broswer and pasting in the another broswer it's entering into default.aspx page only not into login.aspx page(iam using the form authentication for this).
View 1 Replies
Dec 28, 2010
I have certain pages in my application that are designed to be accessed only by redirect from other pages, and not directly(i.e they must get a query string from other page, otherwise there is an exception).
So I want to prevent users from accessing them by typing the URL, but I want them to be available by redirect.
View 1 Replies
Jan 20, 2011
i am using form authentication in my web application.
by default, form authentication allow 2 different users to log in from 2 different computer using same username and password. due to which i am facing some problem.
when user 1 clicks on menu i am maintaining the name of selected menu in a session. but if another user clicks on different menu then the session variable is set to the menu selected by user 2. due to which the 1st user is facing some problem as the value in session got changed.
How can i overcome this problem? is there any way, where once the user has logged in, no one can log in with same username and password from another computer?
View 5 Replies
Apr 21, 2010
I have a folder called <mysite>/Pages. This folder is PUBLICIn this folder I have a aspx page called : MySecure.aspx I have on the default.aspx page a hyperlink to the "~/Pages/MySecure.aspx page".I want to limit access to the MySecure page to only those in a Admin role (so no members no guests or www users can see it. I dont want to move MySecure.aspx into a secure folder.This is what I did in the wedconfig
<location path="Pages/MySecure.aspx">
<system.web>
<authorization>
[code]...
View 5 Replies
Oct 16, 2010
I have some pages that need user to sign in. If not, I need to redirect user to signin page. I know this can be done by using some code like"<system.web><authorization><deny users="?"/></authorization></system.web>" in web.config.
But can I just write some code to do the same function?
like in page load method, I can check whether user is sign in, if user is not signed in yet, how can I redirect user to the login page by using code? and how can I stop sending the content of the page to user?
View 3 Replies
Dec 8, 2010
I have an internal corporate ASP.NET MVC website.
Requirement(1): When any person is on the network, they can access this site EXCEPT one AD Group (Example: AD_Sales group).
Requirement(2): Also like for example if a person that has the access passes a url (Ex: http://mysite/Home/Index/Product/Letter) to a sales group person, he still should NOT access and need to display a custom message saying "You are not authorised to view this page".
If the scenario is like to issue the access to one AD Group and deny access for all others, it is fairly is. It can done from IIS. I am Wondering how to do this.
View 2 Replies
Mar 2, 2011
i have a web application which can be accessed via intenet the application is running on iis and configured using a router..i m looking for a good solution where i can give access to only authorized computers rest of the computers cannot access the applcation for eg:- if i have a users in office1 in sales dept. and he access the application from his office, so i want to deny the same user or any other user, that he cannot access the same application from home or antwhere else.
View 8 Replies
Nov 19, 2010
I have a folder called /Error in the root directory for an ASP.Net site. The site is completely public, so there is no authentication of users. Inside the Error folder, I have a file called errorlog.aspx, where I log unhandled exceptions. I don't want the public to be able to view this file. I created a web.config file inside the Error folder.
[Code]....
However, I'm still able to view errorlog.aspx by typing the URL into the browser. What am I missing?
View 3 Replies
Jan 29, 2010
I have a web app, which contains a folder Uploads, to which users (authenticated) upload their files (for some reason it has to be a folder in the root of the web app).I want to deny access to this folder and files to all non-authenticated users.
In my web.config I have:
[Code]....
and everything seems to work in development, but on a staging server it redirects non-authenticated users to login page ONLY from aspx pages, but not when entering the url to the file in Uploads folder.
View 5 Replies
Sep 1, 2010
I have two roles "Admin" and "Basic". I also have a listview on the web page.
My goal is that to make "Admin" role has the highest privilege to deal with records such as "insert", "update" and "delete".
For the role "Basic", it only can update the records.
View 3 Replies
Sep 15, 2010
I am bulding a site that will create word documents from templates and fill in the bookmarks. Its working fine when running locally in VS but when I publish to the webserver it seems to have an issue opening word. Durning testing I created a new site that only has the code below and its still not working - you click on a button and it looks to have worked but word never opens. I have done 2 days of fault finding to no avail. The server has office 2003 installed and I have put the correct dlls in the bin folder of the project and still no joy - I have played around with as many settings as I can in IIS and still nothing.
[Code]....
I am using;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Web;
using System.Web.UI;
using System.Web.UI.WebControls;
using Microsoft.Office;
using Word = Microsoft.Office.Interop.Word;
using System.Reflection;
View 4 Replies
Nov 17, 2010
the codes given below only working on localhost but not on web server.
[Code]....
View 15 Replies
Aug 3, 2010
i m using ajax toolkit 3.0.30930.0 for asp.net 3.5 with vs 2008. it works fine while running on the local machine but while uplaoding on the web server produce following error in the webconfig file,custom error set to off
should i do some changes in web config file before hosting it to the server. i m using script manager from ajax extension rather than toolkit script manager
View 1 Replies
Mar 29, 2011
My web application need to list the network share information. The return code is '5' after I call NetShareEnum[Netapi32.dll] in windows integrated authentication.
I found that currently I am using Kerberos protocol to authenticate the access users and the token is grenerated with [TokenImpersonationLevel.Impersonation].
Who know how to resolve this problem? Is there any way to get a token with [TokenImpersonationLevel.Delegation] in Kerberos? BTW, I am sure about that the access user has the Access privilege to list the network share in target server.
View 1 Replies
Jun 25, 2010
i m having a big problem as my validatyion controls are not working on my form.
they r working fine on my local machine, but on webserver, they r not firing up.
the form gets submitted and gives error "there is no data at position 0....like that"
View 4 Replies
Sep 25, 2010
i am using the mail sending facilily in asp.net using system.net.mail and system.net.mime.my code is work fine on local host but show the followiing error on webserver as exception
[Code]....
View 3 Replies
Apr 16, 2010
I'm quite new to ASP and I can't seem to figure out how to get the application/website to work properly on my webserver. The first thing I had done was to build the solution, shortly followed by 'build website' and at last, to 'publish website'. It saved the files to C: -> Documents -> MS VS -> Projects -> My website.
There, the following files are found:
Account [folder]; App_Data [folder]; Scripts [folder]; Styles [folder]; bin [folder]; Web.config; Site.master; Default.aspx; About.aspx and PrecompiledApp.config.
I then uploaded these via FTP to my webserver and accessed the appropriate URL. Seems nothing showed up in root beside "Index of/". When I tried to access /Default.aspx, nothing but text appeared (which would be the code displayed in Default.aspx).
I've also read some tutorials regarding this matter where they instructed me to upload directly from Visual Studio to the FTP server, but I'm kind of afraid that it'll delete everything in said folder, as I don't know what the structure of said direct upload should be like.
View 2 Replies
Dec 15, 2010
I have created an application which is relying on routing extensively. it works fine in my development machine, and when deployed in the local IIS server. but when i publish it to remote server routing does not work? any idea why it happens. i also have the following in my web.config
[Code]....
View 1 Replies
Sep 13, 2010
I have weird issue here, I have a method that takes a login Id and authenticates with LDAP active directory and returns the employee Id. It works great when I run the application in Visual studio 2008 ( it uses the default visual studio developement webserver). The code authenitcates the login id and returns emp Id perfectly. But the problem comes when I publish the code to the Local IIS in my developement PC.
[Code].....
View 4 Replies