Protect non-page files; asp.net;IIS
来源:互联网 发布:淘宝如何发布宝贝视频 编辑:程序博客网 时间:2024/06/15 00:15
Question:
Hello my friends ,
not a hard question
I have asite with forms authentication defined ,
I have role security enabled ,
we have the Support part of the site with role based security
that we only allow are customers to visit this part ,
There are files for each customer seperated in an individual folder for t hat customer
now , when customer logged in , if they know the name of a file they can get also files for other customers ,
that we dont want to allow that ,
for example for doing so , I also tried making web.config files inside each customer's page , and only allow that user , with other users denied , but this wont work for those files (in zip/rar format) ,
Is there anyway to protect these files ?
I tried in win Xp , maybe in server we have better options ,
any help would be appreciated , thx
Answer:
Those steps tested work in IIS6:
1.Open IIS manager console.(IIS6 in my Windows Server 2003)
2.Right-click web site or virtual directory and select Properties
3.Choose Directory or Home Directory tab
4. you will find Configuration button under Application Settings, click it.
5.Insert Wildcard application maps: click Insert... and input
C:/WINDOWS/Microsoft.NET/Framework/v2.0.50727/aspnet_isapi.dll (it is this aspnet_isapi in my computer, it may a little bit different in yours)
6. Ok, restart your IIS, and take a try.
Hope this helps
Thanks
http://forums.asp.net/p/1359392/2812046.aspx#2812046
- Protect non-page files; asp.net;IIS
- IIS Temporary ASP.NET Files拒绝访问解决方案
- IIS Temporary ASP.NET Files拒绝访问解决方案
- [ASP.NET]Page.IsPostBack
- Asp.Net Page LifeCycle
- ASP.NET Page 生命周期
- ASP.NET -- Page类
- [ASP.NET] ASP.NET web page Lifecycle
- iis部署提示未能写入输出文件“c:\Windows\Microsoft.NET\Framework\v2.0.50727\Temporary ASP.NET Files 解决方案
- Use the MachineKey API to protect values in ASP.NET
- 配置iis,asp.net
- asp.net iis注册
- Inside IIS & ASP.NET
- asp.net 注册IIS
- ASP.NET注册IIS
- ASP.NET与IIS
- IIS and ASP.NET
- IIS asp.net权限
- Cloudworks WEB桌面
- Oracle学习笔记:索引组织表的COMPRESS选项的测试
- SQL Server 2005数据导入到SQL Server 2000中(图解)
- 辨析Empty,Null和Nothing
- c#导出到txt
- Protect non-page files; asp.net;IIS
- 了解 JavaFX Script 编程语言 --第 4 课:数据类型
- 数据库连接字符串大全
- thickbox使用技巧
- Postfix Mail Server Manage ( 邮件服务器管理 )
- 格式化时间
- 软件开发经验总结(一)细节决定软件的成败
- c++与c#内存管理的对比
- c# sqlite 操作