Forms-Based Authentiction and NON ASP.NET Assets
From: Alex Maghen (AlexMaghen_at_discussions.microsoft.com)
Date: 02/20/05
- Next message: Ekta Agarwal: "Re: how to time out the web asp.net application when not in use for 15 minutes"
- Previous message: Baiju: "Secure and Non-Secure Items"
- Next in thread: Geir Aamodt: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Reply: Geir Aamodt: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Reply: IPGrunt: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Reply: WJ: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 20 Feb 2005 13:35:01 -0800
I have a feeling you're gonna say no but, is there any way, with ASP.NET
Forms-Based Authentication, to protect access to NON ASP.NET objects? For
example, if I have a directory that has .ASPX files AND, say, JPEG files
(.jpg), it would appear that if the user has the URL to one of the JPEGs, he
can still come back any time and download it without being sent to the Login
page. I assume this is because, for a JPEG file, ASP.NET is not involved at
all in the whole IIS loop.
Right?
Alex
- Next message: Ekta Agarwal: "Re: how to time out the web asp.net application when not in use for 15 minutes"
- Previous message: Baiju: "Secure and Non-Secure Items"
- Next in thread: Geir Aamodt: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Reply: Geir Aamodt: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Reply: IPGrunt: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Reply: WJ: "Re: Forms-Based Authentiction and NON ASP.NET Assets"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
