Re: ASP application using ASP.NET Forms Authentication

Let me explain the problem:

I have an application with lots and lots of .asp files. At the moment
we don´t have time and people enough to recode all the .asp pages
to .aspx pages.

Today we do user authentication using sessions at .asp files.

But the biggest problem in the moment is the authentication in other
types of files, like html, jpg, pdf and other files. These are users
files, and they are stored at specific folders in the server. I saw
somewhere that using forms autentication I can configure the
web.config file to deny unauthenticated people to read the files in
these folders, after configuring the mapping in IIS for extensions
like .htm, .jpg, .pdf... . This is the unique resource I plan to use

What I´m planning now is to keep the authentication as it is done
today (using sessions) at the .asp files ( it works ok) and, when the
user log in the application, redirect to a login.aspx page where the
forms authentication is done automaticaly. This way I can configure
web.config in the folders that have users files.

Is it possible or still makes no sense ?

Thanks for the help,

Leandro

.

Relevant Pages

  • Re: Basic authentication - single sign-on
    ... authentication is that only items mapped through the ... numerous .asp files as it will be a while before ... >Forms Authentication can be used for single sign-on, ... I have an intranet site which services ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • IIS6 default website
    ... I am getting the following message when I try to access any of the folders under the default website i.e. HTTP/1.1 New Application Failed. ... It only seems to be falling over on .asp files. ...
    (microsoft.public.inetserver.iis)