How to access web.config deny and allow users tag values?

P

profdotnet

Below is the code of web.config file:

<configuration>
<system.web>
<authentication mode="Forms" />
<authorization>
<allow users="Admin"/>
<deny users="Jack,Mary" />
<deny users="?">
</authorization>
</system.web>
</configuration>

I wanna access the deny and allow tag values and authenticate the
users.

Pl. let me the piece of code to work over here.

Thanks for ne kind of pointers too (I did google it myself also)
 
G

Guest

profdotnet,
Actually this is a generic ASP.NET post and probably should have been posted
to the ASP.NET group, not the C# language group.

Hard - coded values in the web.config are just a convenience and are not
designed to be "accessed programmatically". I think what you really want to
do here is set up forms authentication with roles against a data store (such
as SQL Server).
There are a number of articles that show how to do this, including one I
wrote some time ago here:

http://www.eggheadcafe.com/articles/20020906.asp



Peter
 
P

profdotnet

Thanks Peter

Can you tell me how does <allow users="Admin"/> <deny
users="Jack,Mary" /> tags really can be used to authenticate
application or is that these tags alone don't work.

Your code link does not deal with such kind of sepcific users in allow
and deny tags.

Infact I would like to know what is the real advantage of adding users
to deny and allow tags and what kind of code can really make use of
such info stored in deny and allow tags.

Hope you make this clear.
 
G

Guest

When you perform authentication (typically with forms authentication) each
authenticated user object can be supplied with the list of roles that it
carries.

So, for example, <allow users="Admin"/> would indeed only allow users that
have the "Admin" role attached.
Peter

--
Co-founder, Eggheadcafe.com developer portal:
http://www.eggheadcafe.com
UnBlog:
http://petesbloggerama.blogspot.com
 
P

profdotnet

Thanks Peter for explainin'.

I would like to know if users are different from roles in allow tag?

Does page identify allow and deny tag values automatically to
authenticate users?

How do I access allow and deny tag values?

Have a nice time.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

authorization problem 1
location element in web.config 1
web.Config Deny access not working??? 2
asp.net 2. 0 security 2
Error while trying to run project [.Net 1.1] 4
Problem with web.config inheritance and <authorization> section 10
Strange Session Restart 3
Blocking Direct URL Access through web config 1

Top