asp.net - restrict access to the users -



asp.net - restrict access to the users -

i nave allow users of intranet load html pages. users can load html pages start username, example:

user: 972547j pages: 972537j*****.html

i used asp.net , vb.net, created gridview linkbutton of pages 972537j****.html (for user)

that pages confidentially, don't want users alter manually link , show html pages of other users.

can deny users not open html pages of others? web config setting or iis7 config? html pages not editable

the first step setup iis handle .html files using asp.net

and sec step utilize global.asax check file names user login if allowed view them.

here simple code start, belong global.asax:

protected void application_beginrequest(object sender, eventargs e) { // may need httpapplication app = (httpapplication)sender; // start check if html file string cthefile = httpcontext.current.request.path; string sextentionofthisfile = system.io.path.getextension(cthefile); if (sextentionofthisfile.equals(".html", stringcomparison.invariantcultureignorecase)) { // check if user logged in if( httpcontext.current.user == null || httpcontext.current.user.identity == null || !httpcontext.current.user.identity.isauthenticated) ) { // redirect him } else { // create rest test here // httpcontext.current.user.identity } } }

reference handler: using asp.net routing serve static files asp.net mvc routing - add together .html extension routes http://technet.microsoft.com/en-us/library/cc770990(v=ws.10).aspx

asp.net vb.net

Comments

Post a Comment

Popular posts from this blog

ruby on rails - Devise Logout Error in RoR -

ruby on rails - Devise Logout Error in RoR - while using devise in ror, encountering unusual error when trying log out url different root url. displays me : actioncontroller::invalidauthenticitytoken in devise::sessionscontroller#destroy" for illustration if rooting path after log in '/structure', , seek log out '/general' error, while logging out '/structure' fine. any help highly appreciated. ruby-on-rails ruby devise
Read more

c# - Create a Notification Object (Email or Page) At Run Time -- Dependency Injection or Factory -

c# - Create a Notification Object (Email or Page) At Run Time -- Dependency Injection or Factory - i have code emails me notification when happens. trying add together page , also remove dependency on email. for reference; have name of notification want send stored string in database. @ runtime have list of people , string representation of want receive. i thought dependency injection ninject, kernel bindings got big , seemed hacking together. then thought simple factory, activator.createinstance(email/page) inotifcation, don't know how handle differing constructor parameters (unless utilize common, complex property, employee, has info need). so far have this: public interface inotification { void sendmessage(); } public class email: inotification { private readonly string _toemailaddress; private string body { { homecoming "email"; } } private static string smtphost { ...
Read more

model view controller - MVC Rails Planning -

model view controller - MVC Rails Planning - i'm starting rails , i'm building app stores films info, user can watch film , give grade on web application. i have coded cinema model, controller , views. now, have 2 questions: should need create model , controller grading? in case, should create or should wait , create first users model , controller? yes, on model , controller grades. that'd feasible way maintain track of who's graded what. it's create first, i'd start users, since grades depend on both films , users. ruby-on-rails model-view-controller
Read more