Reputation:
Web.config for authorization of a private user folder
I have a private folder with thousand of users' folders which only be accessible by the correct user. No user can access other users' folders. I can only think of creating a web.config authorization rules for each of the users' subfolder. In this case, I don't have to add every rules for each user in one web.config files.
I am wondering is there any other ways of dealing with this problem by just using one web.config instead of creating a unique web.config file for each of the users.
Upvotes: 0
Views: 712
Answers (1)
Reputation: 54854
The other way is that you can create your own Authorization handler that validates the user is in their own directory. A starting point for this would be the Request_Authorization event handler in the Global.asax.
The benifit of doing it this way is that you can manage all the permissions from a single source, such as a database.
Upvotes: 1
Related Questions
- Allow anonymous authentication for a single folder in web.config?
- web.config in folder allowing all or no user authentication
- How to allow access to a web folder only to authenticated users
- authorization web.config
- asp.net folder authorization
- ASP.NET folder access only to logged in user.
- ASP.NET web.config authorization settings ignored in subfolders
- Password-protect folder with web.config
- Web.Config Authorization for folder access
- Authorization settings for a folder in ASP.NET