deployiment, security, aspnet

Discussion in 'ASP .Net' started by Guest, Apr 11, 2007.

  1. Guest

    Guest Guest

    hey all,
    i just deployed a simple web app that writes temp files to the application
    root. i'm getting the following error:
    ASP.NET is not authorized to access the requested resource. Consider
    granting access rights to the resource to the ASP.NET request identity.

    i can do what is says and it works but are there better ways to do this?
    Best practices kind of stuff?

    thanks,
    rodchar
     
    Guest, Apr 11, 2007
    #1
    1. Advertisements

  2. It is best to create a separate folder outside the root and grant access to
    the asp.net process user to that. In this way if the application is somehow
    compromised the damage that can be done would be limited.
     
    Rad [Visual C# MVP], Apr 11, 2007
    #2
    1. Advertisements

  3. Guest

    Guest Guest

    does code access security allow you to write to a folder outside the
    application root without having to grant ASPNET profile any rights?
     
    Guest, Apr 12, 2007
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.