Reputation: 13447
Impersonation in Asp.net for Upload a file
Please consider this scenario:
I have a web site that host behind IIS 7.0 . Almost every IIS setting are defaulr settings. I have a folder for upload files that ASP.Net user had write access to it.currently IIS manager cancel this write access and he want to add a local user in Windows Server that this user can has write access to that folder. Now my question is how I can Impersonate user in asp.net and if this method is secure? I want all the request execute on server according to default IIS user but I want just impersonate for upload a file.
thanks
Upvotes: 1
Views: 5445
Answers (1)
Reputation: 4585
What you need is partial impersonation. you don't need all request to be impersonated but only a few call should be impersonated. i think you must have a look at this article.
http://support.microsoft.com/kb/306158
this is how it impersonate a piece of code under logged in user's credentials while rest of the call will be processed using default app Pool identity
System.Security.Principal.WindowsImpersonationContext impersonationContext;
impersonationContext =
((System.Security.Principal.WindowsIdentity)User.Identity).Impersonate();
//Insert your code that runs under the security context of the authenticating user here.
impersonationContext.Undo();
Upvotes: 3
Related Questions
- How to Upload File using Application Pool identity instead of Logged User Identity- ASP.NET MVC Impersonation
- ASP.NET Impersonation in IIS
- IIS and ASP.NET impersonation
- Set up impersonation with ASP.NET
- ASP.Net web application trying to use Impersonation and Delegation to connect to a File Server
- uploading file to network drive folder
- Access to file is denied exception with asp.net impersonation
- .NET Impersonate and file upload issues
- Impersonation in ASP.NET 2.0
- asp.net impersonation