ASP.NET页面对常见页面的取消授权

时间:2010-05-13 09:35:17

标签: asp.net unauthorized

我正在开发一个具有基于表单的身份验证的Web应用程序。除AboutUs和ContactUs页面外,所有页面都需要进行身份验证。

除了AboutUs和ContactUs页面之外,我配置了一切正确的内容。由于我拒绝授权部分中的所有用户,即使客户浏览AboutUs和ContactUs页面,应用程序也会重定向。

配置规则

<authentication mode= "Forms">
<forms name=".ASPXAUTH" loginUrl="Login.aspx" timeout="20" protection="All" slidingExpiration="true" />
</authentication>
<authorization>
<deny users="?" />
</authorization>

请您告诉我如何告诉asp.net删除这些页面以进行授权?

谢谢, 马赫什

1 个答案:

答案 0 :(得分:1)

试试这个:

<system.web>
    <authentication mode="Forms" >
        <forms loginUrl="login.aspx" name=".ASPNETAUTH" 
                           protection="None" path="/" timeout="20" >
        </forms>
    </authentication>
<!-- This section denies access to all files in this application except for 
     those that you have not explicitly specified by using another setting. -->
    <authorization>
        <deny users="?" /> 
    </authorization>
</system.web>
<!-- This section gives the unauthenticated user access to the AboutUs.aspx page 
     only. It is located in the same folder as this configuration file. -->
<location path="AboutUs.aspx">
    <system.web>
        <authorization>
             <allow users ="*" />
        </authorization>
    </system.web>
</location>
<!-- This section gives the unauthenticated user access to the ContactUs.aspx 
     page only. It is located in the same folder as this configuration file. -->
<location path="ContactUs.aspx">
    <system.web>
        <authorization>
             <allow users ="*" />
        </authorization>
    </system.web>
</location>