My website is open only for authorized users, so I denied the anonymous users. but the problem is the style is corrupted because it's not allowed to anonymous users to access to the Style folder.How can I except the style folder from the Authorization ?
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
I implemented the Location tag in the web.config file to authorize the anonymous users for Images folder. I deployed the code in IIS6.0 with Forms authentication mode enabled for the virtual directory. I disabled all other authentication modes. When I browse the login page, Images are not displaying. When I set Anonymous authentication in IIS6.0 for the Image folder, it works fine.
See below the code implemented in web.config:
[Code]....
In my web application I want the anonymous user to browse only the login page, and It's OK now but it appears without style!
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
<location path="Style">
<system.web>
<authorization>
<allow users="?" />
</authorization>
</system.web>
</location>
I am using ASP.NET MVC 3 and am trying to do something that should be really straight forward...
My application uses Forms authentication and that is working perfectly for controllers/actions. For example if I decorate either a controller or an action with the attribute below only members of the administrators group can view them:
[Authorize(Roles="Administrators")]
However I have a folder under the default Scripts folder called Admin. I only want members of the Administrators group to be able to access scripts within this directory so I created a new web.config in the directory with the following inside:
[code]....
However no matter whether a user is a member of the Administrators group or not they receive a 302 Found message and are then redirected to the login page.
If I change the web.config to allow user="*" then it works. It also works if I add an allow users="Username" for a specific user I am testing with.
When a user attempts to directly visit the url admin.aspx, and they are not an admin, they are redirected to the login page. However, the user then attempts to visit ViewWeek.aspx, it indicates that they are still logged in. Why does this ASP.NET authorization boot the user to the login screen, yet keep the user logged in? I'd rather it just direct the user to the default URL specified in the forms tag.
Here's my Forms Authentication:
<authentication mode="Forms">
<forms name=".ASPXFORMSAUTH" defaultUrl="ViewWeek.aspx" timeout="50000000" />
</authentication>
Our team has recently implemented a role permission based authorization so that we can have granular control. This is similar to what Rockford Lhotka suggests herehttp://www.lhotka.net/weblog/PermissionbasedAuthorizationVsRolebasedAuthorization.aspx I have also read about the Claims based authorization which to me looks very similar to what we have. Can some one put in simple terms what the advantages of claims based authorization are.
View 1 RepliesMy date picker has no style as in it doesnt seem to be recognising the style sheet
[Code]....
and my html
[Code]....
My <style> for thumbnails currently looks like this:
<style type="text/css">
img.TN {
width: 100%;
margin-bottom: 5.294%;
cursor: pointer; }
</style>
This is annoying, because I have to apply this style to every single thumbnail image individually, when there could be any number of them on the screen at any given time. All of the thumbnails are inside a single <div> that groups them together, and I'd like to apply a single style to the <div> that will push the attributes I need down to all of the the <img> elements nested inside, regardless how many thumbnails there are.
I'm using ASP.NET 2.0, and CSS 2.0
I'm trying to include script and style references that will not break on deployment, however I can not even get the references to work locally. I have tried using Url.Content() and MVCContrib's <%=Html.ScriptInclude("")%>.
My scripts are in a Scripts folder on the root of the site; my styles are in the usual Content/css/ folder.
The scripts render like this:
<script type="text/javascript" src="/Scripts/MicrosoftAjax.debug.js" ></script>
This will not work in a view page in the Views folder. What am I doing wrong and what is the best way to handle this?
I would have thought Url.Content() would at least work for styles but used in my master page, the link rendered
<link href="/Content/css/Site.css rel="stylesheet" type="text/css" />
This does not work, because the Master Page is in a Shared folder, so what is really the way forward with this?
[URL] ....
In above link you clearly describe (How to display directory folder structure).
The path only works when the folder insight the project.
When I put folder outside the project it didn't work. What type of changes I need to made to acces the folder outside the poject. & How can I show other details of files which are including in folders Like. Last Modified Created Date, Modified Date etc..
I am working on asp.net 3.5 in C#. In my application I have to Create folder and upload file in that folder, which works fine on my machine. I want help for create folder and upload file in that folder on other machine which is connected in LAN. code for create folder and Upload file on my machine
string FileName = FileUpload1.FileName;
Im trying out the Hudson Continuous Integration. After the build is executed i want to copy the content of the ReleaseBuild to another website on the server.This should be possible i guess but i cant seem figure it out.I know this can be done in nAnt and msbuild but i need to make Hudson do it, eg plugin or something.
View 1 RepliesI am ristrcting access to the Account folder using below:
<location path="Account">
<system.web>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
</location>
and access to the Default.aspx using
<location path="Default.aspx">
<system.web>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
</location>
but how do i restrict access to a specific file in the Account folder rather than the entire folder?
I tried the following but did not work
<location path="AccountChangePassword.aspx">
<system.web>
<authorization>
<deny users="?"/>
<allow users="*"/>
</authorization>
</system.web>
</location>
I have a simple photo album. I have some catories in db and corresponding folders. For example, when user creates a category called "Asp Net" in db then a folder called "AspNet" is created. Then user can upload photo and all photos are displayed as thumbnail. No photo is saved in db, they are directly saved lets say AspNet folder. I just fetch filelist from intended folder and list them. However I want user to be able to update category name or delete it. To keep consistency, corresponding folder should be updated or deleted. But when I try it throws exception: Access to the path 'xxxxx" is denied.
View 1 RepliesI want to create a folder to store some web controls, so the site structure doesn't have a zillion files in the root.
Except that if I create an ordinary folder, that folder is also visible on the web site. MSDN said you cannot put it in App_Code, and it doesn't really make sense to put it in other special folder like App_Data or App_Theme.
We store backup archives in subfolders of a folder on one of the server's external USB drive. I would like to have an ASP.NET app read the contents of this folder so the manager can view the backup files to confirm backups are working and optionally delete these backup files when an old drive is reconnected so it can be used for the next weeks backups.
This backup folder is oubviously outside the server's webroot. Is there some way I can grant authority so the ASP.Net app can access this folder for this purpose? I would be using VS Web Express, so can't create any signed packages and such.
When we select pull down menu Build -> Publish .... website. The cs extension file dropped into bin folder instead of root folder.
View 2 RepliesI have an ASP.NET website and I want to find the /bin/[Configuration] folder to use an external tool (an exe file). When I use reflection to get calling assemblies location it returns something similar to:
C:WindowsMicrosoft.NETFramework\...Temporary ASP.NET Filesa1388a5e\...my.dll
Since each dll has its own directory under the temp ASP.NET Files this fails for me. How can I get the location of the compiled binary folder where the dll's and the .exe is (i.e. bin/) instead of asp.net's temporary cache?
I have a class file stored in the app code folder. A certain page that I want to access is inside its own folder within the root and it is using the namespace within the class file in the app code folder. How do I tell the application where the file is? I'm sure I could put the code in a file inside my folder, but I'd rather not have duplicate code in two different files... unless there is a way to make a reference of some type.
View 1 RepliesI have a folder with png images that are not shared or public (the folder is outside my application folder). Now I want my users to be able to view thoose images only if they are logged in (different users, different images). All images have a name that correspond to the users id. My idea is to stream thoose images into the asp:Image control, is that possible? How do I do that? Other (better) solutions?
View 6 RepliesI have an asp page that needs to download files off of a virtual directory.
I wanted to add the virtual directory to the Visual studio app.
Actually I want move files from one folder to another folder after reading files.So while moveing the files i want rename those file
My Code is :
[Code]....
showing some error also the folder using another process, How to rename while moving..
ex:ss.xls need to 20100429.xls
ss1.xls need to 201004291.xlx
it should increment file name
I've an Admin area and I want only Admins to enter the area. I considered adding the Authorized attribute to every controller in the Admin area. Isn't there an elegant solution or is this feature not there in the framework itself?
EDIT:
I should to have mentioned this before. I'm using a custom AuthorizedAttribute derived from AuthorizeAttribute.
was wondering how do I make it so when a user goes to a page its only displayed if he is logged in and secure, but if he is not logged in he is redirected to the login page?
View 4 RepliesIam using forms authentication in asp.net Application,i want to make pages accessible depending upon roles defined in database. for eg there are three rolesdefined in database salary admin, manager, Clerk. i want a page salary.aspx can be accessed only by salary admin and not any other roles.
View 1 Replies
