Restrict Access to Aspx Page

J

Jacques Oberto

Hi All,

One of the aspx pages in my application is a run-time
image generator and is called using URL by other pages
in my app.
I would like to restrict direct acces to the image generator
page from external (different domains) applications/webusers.
How can I achieve that?
Thanks,

Jacques
 
J

Jacques Oberto

One of the aspx pages in my application is a run-time
image generator and is called using URL by other pages
in my app.
I would like to restrict direct acces to the image generator
page from external (different domains) applications/webusers.
How can I achieve that?
Click to expand...

I think I found a solution by defining a Session variable in
the code behind of the authorized pages and checking that
variable in the restricted aspx page.
 
G

Guest

Hi All,

One of the aspx pages in my application is a run-time
image generator and is called using URL by other pages
in my app.
I would like to restrict direct acces to the image generator
page from external (different domains) applications/webusers.
How can I achieve that?
Thanks,

Jacques
Click to expand...

Check HttpRequest parameters as in the following code

if (context.Request.UrlReferrer == null
|| context.Request.UrlReferrer.Host.Length == 0
|| context.Request.UrlReferrer.Host.CompareTo
(context.Request.Url.Host.ToString()) == 0)
{

// show image

}
 
J

Jacques Oberto

Check HttpRequest parameters as in the following code

if (context.Request.UrlReferrer == null
|| context.Request.UrlReferrer.Host.Length == 0
|| context.Request.UrlReferrer.Host.CompareTo
(context.Request.Url.Host.ToString()) == 0)
{

// show image

}


Thanks Alexey, very useful. That should also allow to define
a group of authorized external users.

Jacques
 
G

Guest

Check HttpRequest parameters as in the following code

if (context.Request.UrlReferrer == null
|| context.Request.UrlReferrer.Host.Length == 0
|| context.Request.UrlReferrer.Host.CompareTo
(context.Request.Url.Host.ToString()) == 0)
{

// show image

}

Thanks Alexey, very useful. That should also allow to define
a group of authorized external users.

Jacques
Click to expand...

Then you can simply add context.Request.UrlReferrer.Host.CompareTo
("domain.com") to check if requests comes from an authorized domain.
 
C

Cubaman

Hi All,

One of the aspx pages in my application is a run-time
image generator and is called using URL by other pages
in my app.
I would like to restrict direct acces to the image generator
page from external (different domains) applications/webusers.
How can I achieve that?
Thanks,

Jacques
Click to expand...

You can create groups, and just configure acces in your web.config.
http://support.microsoft.com/kb/815151
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Restrict aspx page access only through application 3
Configuration for aspx Page 2
How to use PDF-lib and how to center each line of texts on the page? 1
Secure an ASPX page 4
Sending data from web page to Raspberry Pi 0
Looking to change programming direction 1
Help with my responsive home page 2
can't access .aspx web page 2

Members online

Total: 57 (members: 2, guests: 55)
Robots: 406

Forum statistics

Threads
473,968
Messages
2,570,154
Members
46,702
Latest member
LukasConde

Latest Threads

Top