Web Site Configuration for remote users

M

Mikey Baby

Greetings all

I've just re-engineered a small system to use the Roles/Membership and
ASP.Net Configuraton Tool.

I've configured it for 'From the Internet' access.

However, I can access the Config Tool by just running it. I don't have to
login.

I hunted around and found this:
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\ASP.NETWebAdminFiles\web.config

So I altered it to Forms authentication and did this:
<authorization>
<deny users="*"/>
<allow roles="Manager" />
</authorization>

This is slight progress. I can't administer the site anymore - it's looking
for login.aspx. But this doesn't exist in the folder.

I know this is probably all because I'm working locally, but I'd like to be
sure before I roll this out (I don't have a test environment).

Many thanks

M.

MCDBA : MCSD
 
D

Dominick Baier

So what are you really trying to achieve?

use the tool to remote administer the site?
or prevent remote administration?
 
M

Mikey Baby

use the tool to remote administer the site?

However, I'm possibly a little confused.

Is the ASP.Net Configuration Tool designed for live use? Or is it just
something for VS2005 to work against?

My site uses Accounts, Roles etc and I'd like to rip out my custom code and
use this tool instead. I want my users to create their own accounts and then
I will add them to the Role that allows access to the PaySite bits.

So, I guess I want the following:

1. A proper method to distribute this to my provider (a .net hosting company)
2. Prevent my users from using it through Forms Authentication

I'm starting to suspect that this might not be possible. For example; it
uses the Machine.config file which I won't have access to as I'm using a
shared host.

All the info/articles I can find are about standard usage of this Tool
(Providers, App. Settings etc). Nothing about actually rolling this out.

Then again, if it's not designed for live use, what's the point?

Also, on a brand new WS2003 machine, the Config site is there, but still no
login.aspx page. I think this Tool only works with Windows Authentication?

M.

MCDBA : MCSD


:
 
D

Dominick Baier

in theory it works remotely - but if you inspect the source, there is an
explicit check for local connection...


so it was designed to be used local only - every other scenario is not officially
supported (though it will work - but requires thorough testing)
 
M

Mikey Baby

Well, I've almost got it working. Added a login page, various web.config
changes, file system permissions etc. Just dealing with the LocalOnly
hardcode at the moment.

However, I'm struggling to understand why this was built at all.

It assumes that it's only being used on the developers desktop -or- we have
Remote Desktop connections to the Server. Which, if we did, why not just
write a Winforms app? Or extend the ASP.Net Config Form in IIS.

My App is based on multiple, low cost, hosts. I'm lucky if I get a single
SQL Express DB. Forget about Remote Desktop access or IIS administration.

Hopefully, I can contribute an Article somewhere explaining how to get this
running remotely as I equally can't understand why this aspect of the tool
isn't discussed in other forums. Does no-one use this live?

Regards and thanks for the input.

M.

MCDBA : MCSD
 
D

Dominick Baier

Well - i never came across someone who uses it live - and it was never designed
for that scenario...

It is for local only stuff...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Members online

No members online now.

Forum statistics

Threads
473,744
Messages
2,569,484
Members
44,904
Latest member
HealthyVisionsCBDPrice

Latest Threads

Top