Can't make forms authentication for non-ASPX files work

R

Ronald S. Cook

In my web app, I want to secure not only .aspx files, but also .htm files.
From what I've read, I have to jump through some hoops to protect the .htm
files.

In IIS, I right clicked on the default web site and clicked on the ISAPI
Filters tab. I added ".htm" and chose
"C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_isapi.dll" as the
executable.

I then added the following in the Web.config within the system.web tags:

<httpHandlers>
<add path="*.htm" verb="*" type="System.Web.StaticFileHandler"
validate="true" />
</httpHandlers>

But it didn't work. I have no idea if what I did was right, but obviously
it wasn't. Can someone please help.

Thanks,
Ron
 
E

Edwin Knoppert

Odd, a protected website's images folder of mine doesn't show an image
unless i put a webconfig allow * in the images dir.

So?
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Use forms authentication to protect non-aspx files? 4
Can't use forms authentication when using IIS 5
ASP2.0 Can't download files Forms Authentication 6
Authentication of legacy .asp pages via ASP.NET Forms 0
How to make Visual Studio 2005 to handle .asp files like .aspx 1
Handler in Global web.config doesn't work 9
Simple Login programming: Authentication does not work for me! 1
URGENT: Process html pages as aspx pages. 1

Members online

No members online now.
Total: 41 (members: 1, guests: 40)
Robots: 448

Forum statistics

Threads
473,768
Messages
2,569,575
Members
45,053
Latest member
billing-software

Latest Threads

Top