Re: Bypass forms authentication

From: Arvind P Rangan (arvind99_at_hotmail.com)
Date: 03/05/04 

Date: Fri, 5 Mar 2004 14:52:53 +0530

Hi Chris,
Add this after the first </sytem>
before </configuration>
<location path="FOLDERNAME">
  <system.web>
  <compilation defaultLanguage="vb/c#" debug="true" />
   <authorization>
    <allow users="*"/>
   </authorization>
  </system.web>
 </location>
Check it out This Works.
Arvind
"CJF" <chrisf@unr.edu> wrote in message
news:up$W7phAEHA.1796@TK2MSFTNGP12.phx.gbl...
> My application uses forms-based authentication.
> In my .NET project I have a subfolder to store forms that display
> user-friendly error messages to the user.
> I also have an http module to handle prerequests for creating my database
> objects and connections. If the database connection fails I want the user
> to be redirected to one of my error pages. The problem is if the
connection
> fails before the user has an opportunity to authenticate then the user
gets
> redirect to the error page, which in turn redirects them to the sign-in
> page, which in turn fails to connect to the db and redirects them to the
> error page (and round and round we go!). I created a web.config file for
my
> subfolder and set the authorization to allow all users, but it's not
> allowing the user to see the error page and still invokes forms
> authentication by using the authentication and authorization settings in
the
> parent web.config file. If I go to the error page by typing in the URL
> directly it works, but it doesn't work if I redirect in the code.
>
> How can I allow redirection to a page in the project and bypass the
> authentication on a subfolder or form basis? Should the child web.config
> file override the parent and allow all users if I choose?
>
> Thx, Chris
>
>

Relevant Pages

  • Forms Authentication and Role-Based Security Issue
    ... Forms Authentication and Role-Based Security Issue ... I would like to redirect the user to a ... Private Sub Page_Load ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Authentication with $_SESSION
    ... > What is the best way to implement authentication in PHP? ... I like to redirect to different pages depending on the outcome of the login. ... Authorization is deciding whether he can do something. ...
    (comp.lang.php)
  • Re: Redirect To Login Page - Forms Authentication
    ... Login Form is redisplayed. ... Authentication is verification of who a person is. ... Authorization is whether the person is allowed to see something. ... redirect to login is based on authorization. ...
    (microsoft.public.dotnet.framework.aspnet)
  • Re: Forms Authentication: <location> authorization not bypasssing login page.
    ... Here's a location tag the way I have it setup to avoid the authentication: ... >subject to a redirect to the login page. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • asp.net vulnerability
    ... From: Windows NTBugtraq Mailing List ... More details on ASP.NET vulnerability ... There has been some confusion with the ASP.NET forms authentication issue ... authorization issue, not an authentication issue. ...
    (microsoft.public.sharepoint.portalserver)