p2p.wrox.com Forums

Need to download code?

View our list of code downloads.


  Return to Index  

aspdotnet_website_programming thread: WEB.CONFIG


Message #1 by ryan@e... on Sat, 1 Feb 2003 19:04:50
The web.config file uses forms authentication for ALL pages within the 
web. So the REGISTER link doesn't load the new.aspx page but instead 
reloads the login.aspx page looking to authenticate. Shouldn't the 
new.aspx page bypass the forms authentication? If so, how?

Thanks!
Ryan Stevens
Message #2 by ryan@e... on Sun, 2 Feb 2003 14:16:58
> The web.config file uses forms authentication for ALL pages within the 
w> eb. So the REGISTER link doesn't load the new.aspx page but instead 
r> eloads the login.aspx page looking to authenticate. Shouldn't the 
n> ew.aspx page bypass the forms authentication? If so, how?

> Thanks!
R> yan Stevens

************************

Found it.

The web.config needs an authorization list.

The authentication is set to Forms and protects all pages.

To specify pages that are not protected the following xml does the trick.
_____________________________________________
<location path="Modules/Users/New.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>
______________________________________________

Place authorizations after the existing </system.web> tag.

Ryan Stevens

  Return to Index