Roles not working the way I expected.... any help appreciated.

R

rob lynch

web.config
<system.web>
<authorization>
<deny users="?"/>
<allow roles="Members"/>
</authorization>
</system.web>

What I want is for only members of the Members Role to have access to the
directory, however authenticated users who are not in this role can access
the site.

I have tried changing the role to Admin, but that still doen't work. Am I
misssing something simple?

Do I need to actually check the group at the page level?

If so, why have the option in the web.config?

I did see a Deny for the role, but that only works if the member is part of
a role :) as it doesn't like wildcards or empty strings. Which lets the evil
individual who isn't a member of a role access to the directory.

Asp ver 2.0


TIA


Rob
 
R

rob lynch

Dominick,

Thank you!

I had deny users=* before the role earlier and that seemed to block all :)

Again, Thanks!!!!


Rob
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Forms Auth/Membership & Roles Providers/Secured Directory 1
Custom RoleProvider + <allow roles> not working 3
Forms Auth (roles being ignored) 0
Roles - Access Rule Storage 3
authorization different paths and roles 4
FormsAuthentication Roles Problem 4
asp.net 2.0 roles not working when deploying to web server 5
User & Roles 0

Members online

No members online now.
Total: 22 (members: 0, guests: 22)
Robots: 164

Forum statistics

Threads
473,755
Messages
2,569,534
Members
45,008
Latest member
Rahul737

Latest Threads

Top