Reputation: 25
IIS Windows and Anonymous Authentication
I have an Asp Core page running on an IIS-Server. Until now I authenticate the users with Windows Authentication (NTLM). Now I want to use one part of the site as Api for an Android app. This part need anonymous authentification, but if I enable it for the whole site, the Windows users will be asked no more for their credentials.
Is there a way to enable the anonymous authetication only for some pages, respectively for a path in the site structure?
Upvotes: 1
Views: 943
Answers (1)
Reputation: 2733
I do it by putting [Authorize] on top of the method of my controller that require the user to be authenticated. The ones without the tag won't require authentication and will work well with IIS anonymous access.
Note: there is also a "AllowAnonymous" attribute (src: https://learn.microsoft.com/en-us/aspnet/core/security/authorization/introduction?view=aspnetcore-3.1#namespaces)
Note2: You can customize your [Authorize] attribute to use a specific authentication scheme as demonstrated here.
Upvotes: 0
Related Questions
- Enable both Windows authentication and Anonymous authentication in an ASP.NET Core app
- ASP.NET Core Identity with Windows Authentication
- IIS Mixed Anonymous and Windows Authentication
- ASP.NET Core - Authorization Using Windows Authentication
- Asp.Net core MVC application Windows Authentication in IIS
- Windows Authentication to log into Identity
- Windows and Anonymous Authentication in .Net Core 2.0
- How do you use both anonymous and windows authentication in ASP.NET Core 2.0
- Windows Authentication with asp.net core
- Mixing Anonymous Authentication with Windows Authentication in IIS 7