Making all theme files availble before authentication

David Thielen · Nov 12, 2006

Hi;

My login page uses css and gif files from the theme. Since the user can
change the theme in the web.config file, is there a way to say any file (or
preferably any .css, .gif, or .jpg file) anywhere under App_Themes can be
read by un-authenticated users?

Otherwise if a sysadmin changes the theme in web.config, they have to know
to change the location nodes too.

--
thanks - dave
david_at_windward_dot_net
http://www.windwardreports.com

Cubicle Wars - http://www.windwardreports.com/film.htm

Steven Cheng[MSFT] · Nov 13, 2006

Hi Dave,

As for those theme resource like css, gif, jpg ... files under Theme and
sub theme folders, by default they will be available to all users no matter
they have been authenticated or not(suppose you are use
formsauthentication+membership+role).

As far as I know, we may meet some problems with access static resource
items under unauthenticated(login) user when we developing through the VS
2005/.NET 2.0 test server. Because the test webserver will process all the
requests from browser (no matter the requested file is static ones--css, js
or dynamic ones--aspx, ascx).

Are you also encountering the problem when developing through test server
or also meet problem in IIS hosted scenario?

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead

This posting is provided "AS IS" with no warranties, and confers no rights.

David Thielen · Nov 13, 2006

Oh - good point. I will try on IIS.

--
thanks - dave
david_at_windward_dot_net
http://www.windwardreports.com

Cubicle Wars - http://www.windwardreports.com/film.htm

David Thielen · Nov 13, 2006

Works fine under IIS - can you report this as a bug in the VS 2005 web server?

--
thanks - dave
david_at_windward_dot_net
http://www.windwardreports.com

Cubicle Wars - http://www.windwardreports.com/film.htm

Dominick Baier · Nov 13, 2006

this is not a bug - it is just the Cassini and IIS handle things differently...

http://www.leastprivilege.com/CassiniConsideredHarmful.aspx

Steven Cheng[MSFT] · Nov 14, 2006

Thanks for Dominick's input.

Hi Dave,

Yes, this is actually the expected behavior in test server instance test
server doesn't has raw ISAPI filter and extensions as IIS. Therefore, all
the requests(no matter static or dynamic files) will be handled by ASP.NET
engine. So when test through test server, we need to take abit more care on
such scenario.

Anyway, I agree that this should be one of the things the ASP.NET team can
improve for futher release. I would suggest you submit this in the product
feedback center:

http://connect.microsoft.com/feedback/default.aspx?SiteID=210

Sincerely,

Steven Cheng

Microsoft MSDN Online Support Lead

This posting is provided "AS IS" with no warranties, and confers no rights.

How does my theme default.css get in my web page?	4	Dec 17, 2006
How do I tell what authentication method is being used?	2	Nov 8, 2006
How do I get a bitmap from the theme?	3	Oct 29, 2006
Windows authentication - get prompted	9	Nov 9, 2006
<location> multiple file question	3	Oct 21, 2006
get a filename for a bitmap in a skin	2	Nov 13, 2006
StyleSheetTheme not working	2	Nov 12, 2006
Who is may ASP.NET app supposed to run as?	6	Dec 30, 2006

Making all theme files availble before authentication

David Thielen

Steven Cheng[MSFT]

David Thielen

David Thielen

Dominick Baier

Steven Cheng[MSFT]

Ask a Question

Similar Threads

Members online

Forum statistics

Latest Threads