Re: Disabling direct HTTP access to certain folders on server
- From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Tue, 25 Apr 2006 10:23:24 +0000 (UTC)
well - if you need to access the .xsl from "outside" the web server this won't help you.
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Hi Dominick
I tried that - but the problem is that this prevents the xsl file
being
applied to the corresponding xml file.
Actually, let me clarify. There is a static aspx page, which contains
an
iframe that hosts the xml. The xsl is applied to this xml.
If I apply an HttpForbiddenHandler to xsl files, the style*** doesnt
get
applied at all and the frame displays "Cannot view XML input using XSL
style
***".
Thanks in advance.
Vikas
"Dominick Baier [DevelopMentor]" wrote:
Hi,
find more info here:
http://www.leastprivilege.com/ProtectingNonASPNETResourcesWithASPNET2
0.aspx
http://www.leastprivilege.com/MoreOnProtectingStaticResourcesWithASPN
ET20.aspx
in your case you only have to map the .xsl extension in iis to
aspnet_isapi and put a HttpNotFoundHandler in place...
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
Hi
I am using .Net Framework 1.1. There are some XSL files in a folder
of
my
web application. I want to restrict a user from directly accessing
these
files - e.g. I want to display a forbidden page when he types the
URL
http://Myserver.com/MyApp/XMLFolder/pqr.xsl
However the ASP.Net application should be able to access these files
i.e. it
should be able to apply the XSL Stylesheets to the corresponding XML
files.
It would be a great help if someone could let me know how to do the
same
Thanks
Vikas
.
- Prev by Date: Re: Authentication from Active Directory and Database based user d
- Next by Date: Re: Authentication from Active Directory and Database based user d
- Previous by thread: Re: Disabling direct HTTP access to certain folders on server
- Index(es):
