Problems with allowOverride

R

Robert Scheer

Hi.

I am trying to use allowOverride in my web.config file, in order to
deny changes made by other configuration files. I want to allow only
the main web.config file sitted on my root folder to work. I tried
some different configurations with no success. When I run the
application, it seems that my loginUrl parameter is ignored. That's my
last web.config (only the relevant sections):

<?xml version="1.0" encoding="utf-8" ?>
<configuration>

<location path="Brokers" allowOverride="false"> <!-- Does not work
-->
<system.web>
<authorization>
<deny users="?" />
</authorization>
</system.web>
</location>


<location path="Intro.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>

<location path="News.aspx">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
</location>

<system.web>


<authentication mode="Forms">
<forms loginUrl = "Index.aspx" name = ".autind" protection="All"
path="/" />
</authentication>

<authorization>
<allow users="*" />
</authorization>


</system.web>
</configuration>

Brokers is my root folder. How can I change web.config to deny other
config files under my root folder?

Thanks,
Robert Scheer
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Members online

No members online now.

Forum statistics

Threads
473,744
Messages
2,569,482
Members
44,901
Latest member
Noble71S45

Latest Threads

Top