ASP.NET forms security and web.config

H

Harley

i have an application that uses forms security to restrict access to a
specific folder. it´s done using a web.config file on the root folder with
this structure:

<configuration>
<system.web>
..
..
..
<authentication mode="Forms">
<forms name="InterMedia.PaymentsMerchantLogin"
path="/"
loginUrl="manager/login.aspx"
protection="All"
timeout="10">
</forms>
</authentication>
<identity impersonate = "true"/>
<authorization>
<allow users="*" />
</authorization>
..
..
..
</system.web>
<location path="manager">
<system.web>
<authorization>
<deny users="?" />
</authorization>
</system.web>
</location>
..
..
..
</configuration>

this redirects users to manager/login.aspx to all users trying to conect to
the /mananger folder.

now i need to secure another directory, but a different set of users and
using another login screen. if i use a different <location> section i get an
error.

what should i do?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Members online

Forum statistics

Threads
473,995
Messages
2,570,230
Members
46,819
Latest member
masterdaster

Latest Threads

Top