Security :: Restrict Users From Certain Webpages?
Mar 7, 2010
I am developing a website that has 2 roles of users.i have made 2 folders for each type of user's web pages. how to imply security so that 1 type of user could not see other user web pages.is thier any other way or i will have to check form the databse for credidentials every time the page is visited?Also let me know why do people put web pages in folders?i am not using sql membership and not even .net classes for role management.
View 7 Replies
Similar Messages:
Oct 27, 2010
In my application i have 4 screens such as page1.aspx, page2.aspx, page3.aspx, Page4.aspx. I have created user Settings Web Form where the admin Creates username and password for users with access only for particular pages. I have used check boxes to select their accessibility while creating user setting.
View 1 Replies
May 12, 2010
I have just started to use asp.net mvc.
I have read this article about using ntlm authentication
[Code]....
it provides access to specific domain users
[Code]....
I want to restrict access to all my domain users only lets say
[Authorize(Domain="redmond")]
or do I do it via web.config
View 2 Replies
Aug 9, 2010
I have a login form and users have to enter their username and password for entering the sites ..
Also now its possible for users to enter the sites without login .. they can select the options in the menu and access them ... But i want to restrict the users ..only allow them to access the menu componets after login ... If they tries to access the contents a text have to display ask them to login
how can i do that... i am using vb.net as my language in the page
View 22 Replies
Mar 26, 2011
I am using the membership provider and am reasonably comfortable that all of my web pages are safe.Some of the pages contain hyperlinks to documents (pdf, xls, etc.) stored in a folder under the root of the web site. I have disabled the ability of users to anonymously list folder contents, but I don't see a way to keep anonymous users from accessing the documents if they know the specific URL for that document. Example; if the document contains a spreadsheet of current sales, I don't want an ex-employee (who captured the URL while working here) to be able to bring up the current document.asswording the documents isn't a good choice because there are hundreds and we'd like to avoid changing them all every time someone leaves, or weekly, or whenever...Is there a way to restrict access to all contents of a web folder to people who have been authenticated?
View 4 Replies
Mar 3, 2011
We deployed our usercontrols (gridView, textboxes & button) on sharepoint 2010 site, & everything works fine.
Now testing team are able to alter the viewstate value of controls through Fiddler and changed it with some junk characters, now after submitting
the form to server, it throws Invalid JASON Primitive (server 500 error)
In web.config file, by default EnableViewStateMac is true.
Is it any way to restrict the users or any way to stop the postback if some one alters the viewstate.
View 1 Replies
Jan 4, 2010
I am trying to create a diary site which will allow users to enter rich texts (text, picture and video links...) and the outcome for each page will be an html file being saved under each users profile folder.If I create html files for every user entry, then these pages can be accessible if the path and file name is known for them... I am trying to have some secured html pages so that only the owner of those pages can have access to them after logging in.
View 7 Replies
May 7, 2015
I tried to follow the examples give in :
[URL]
So in my web.config i typed this :
<authentication mode="Forms">
<forms loginUrl="Login" defaultUrl="DailyLog" timeout="2880" cookieless="UseCookies" />
</authentication>
when i browse my application through local host , it shows Login screen , also validating the credentials , but without entering any credentials if i change my Url at login page from :
http://localhost:49702/Login
to
http://localhost:49702/DailyLog
it goes to DailyLog without confirming the login ...
in Login Screen on Submit button Click event i have done this :
View 1 Replies
May 9, 2010
I have the following question on how to do the following:I have developed a website and I want certain users to give to possibility to add a text article to specific pages or maybe into a Forum. These articles are more or less having the same structure like:Big Header, manchet (intro), text with in between small headers. I would like to have this all in the same font-family and depending on the sort of text in a certain font-size.I was thinking of using TinyMCE as a base, because all typographical aspects are in there and it is also possible to add graphics and other video stuff to itt.Is this possible to use this, since I recently found TinyMCE and do not have the knowledge yet about this?And how should the structure be set up?I do hope someone could give some clues or sites where this is discussed.
View 4 Replies
Apr 3, 2011
I have an asp.net application. There is a folder in the project that users upload images and files to that folder.
I want to restrict users, that each user sees only his files. How can I do this?
Because files are uploaded in folder, users may access them by browsing file urls.
View 1 Replies
Aug 21, 2013
in my asp.net+vb web page which is use din INTRANET web . In a page i want to restrict the browsing for four peoples only, so that i used a code like below.
Protected Sub Page_Load(ByVal sender As Object, ByVal e As System.EventArgs) Handles Me.Load
Dim ipaddress As String
ipaddress = Request.ServerVariables("HTTP_X_FORWARDED_FOR")
If ipaddress = "" OrElse ipaddress Is Nothing Then
ipaddress = Request.ServerVariables("REMOTE_ADDR")
End If
iptxt.Text = (ipaddress)
If iptxt.Text = ("192.168.0.3") Then
Response.Redirect("err.aspx")
End If
end sub
in my asp.net+vb web page which is use din INTRANET web . In a page i want to restrict the browsing for four peoples only, so that i used a code like below.
ProtectedSubPage_Load(ByVal sender AsObject,ByVal e AsSystem.EventArgs)HandlesMe.LoadDim ipaddress AsString ipaddress =Request.ServerVariables("HTTP_X_FORWARDED_FOR")If ipaddress =""OrElse ipaddress IsNothingThen ipaddress =Request.ServerVariables("REMOTE_ADDR")EndIf iptxt.Text=(ipaddress) If iptxt.Text=("192.168.0.3")ThenResponse.Redirect("err.aspx")EndIf
View 1 Replies
Sep 30, 2013
Just to avoid misuse of website i have to make it specific for certain region. Like people could view menu across the world and only the people of mumbai can order online. I want a submit button that would be visible to only mumbai people.
View 1 Replies
Aug 18, 2010
I'm writing a simple Intranet application using windows authentication. I want to restrict access to Safe/UCantSeeMe.aspx. I am aware of the AuthorizeAttribute, but this only works on methods. I also found a good post on doing this with the MVC pattern, but I'm not using MVC. This can be done with roles in forms based security. I read on MSDN that using windows based security means roles are based on groups, but it doesn't go into any detail. how can I restrict access to Safe/UCantSeeMe.aspx?
View 1 Replies
Apr 16, 2010
I have installed an SSL certificate with EV on a website through IIS. I am aware that as the SSL has EV that it can display a 'green bar' on web pages. I want to display the 'green bar' on specific web pages. These web pages sit within a 'SECURE' folder within the website directory. Is there some code I can insert on these web pages for the 'green bar' to display?
View 1 Replies
Jan 29, 2010
once i login using forms authentication, how do i retrieve user name on other webpages for secuirity reasons.
I login in with 'a' and keep getting my windows login with this code?
username = Request.LogonUserIdentity.Name
username = HttpContext.Current.User.Identity.Name
I cant get login name?
View 2 Replies
Aug 26, 2010
Allow Admin Users to Access Basic Users Accounts?
View 4 Replies
Dec 6, 2010
[Code]....
after successful creation of 3 users on my web site now cannot create users
View 9 Replies
Oct 12, 2010
We have implemented the ASP membership and roles..and we would like to display the users currently logged in and also display the number of users online so we can display that on the page. The list of users woudl only be available to our admins. BUt the number of users will show for everyone.
View 9 Replies
Aug 11, 2010
I need to figure out a way to prevent users from uploading a couple file types in my vb.net page. How can I prevent users from uploading .msg or .gifs during a file upload?
View 3 Replies
Jan 23, 2010
[Code]....
Trying to restrict access to folder but can't?
View 6 Replies
Oct 13, 2010
I want to secure a particular set of files in a folder by role type. I have the following entry (See below)...I notice this doesn't work (I.e., it doesn't secure the file by Role Type.. anyone can access the file). I've read that I need to map the .WMV extension to the ASp.Net DLL.
[Code]....
View 10 Replies
Jun 2, 2010
How can i restrict sql injection in my code. How can i test that one whether SQL injections are applicable or not
View 4 Replies
Aug 4, 2010
I just realized after i created a test account i was not in any roles. Is there a way to automically add new users into the role Users? Have i missed this some where?
View 8 Replies
Mar 17, 2010
I have a security issue in my web application where user can enter malicious data/can change the page path directory. To avoid these i want to restrict the user by accessing/typing in the URL.
View 5 Replies
Mar 10, 2010
I have developed An Inventory Management System in ASP.Net . The application is hosted now ... From manager to data entry operator every1 z having seperate login , roles and limitation to access website ... From Our office every1 is accessing the application and working on it. My question is even they can access the apllication from public PC (Browseing Center) ?? coz they knew the password. Am i rite. Now, I need to restrict my application access in public PC (Browseing Center)? Can i limit accessing of my website application only in office not in public PC (Browseing Center)? can i allow certain IP to access my website application?
View 11 Replies
