while using FormsAuthentication exempt a directory

[Guest]

I want to exempt an entire subdirectory "/help" from the need for
FormsAuthentication. How can I do it?

I am using .Net FormsAuthentication to require login to all non member pages
in my application via
<authentication mode="Forms">
<forms loginUrl="loginPage.aspx" name="AuthorizationCookie"
requireSSL="false" slidingExpiration="true" timeout="20" path="/"
protection="All" >
</forms>
</authentication>
<authorization>
<deny users="?" />
</authorization>

I allow access to a particular page via

<location path="welcome.aspx">
<system.web>
<authorization>
<allow users="*"/>
</authorization>
</system.web>
</location>

this is all for the root directory.

I want to exempt an entire subdirectory "/help" from the need for
FormsAuthentication. How can I do it?

Thanks
Mike

 

[Guest]

Create a web.config file in the sub directory.

And add the following code in it:

<configuration>
<system.web>
<authentication mode="none" />
</system.web>
</configuration>

And thats all that should be in the file.
This will override the authentication settings from the parent folder.

Darshan

 

[Guest]

Darshan,

Thank you for answering my question

Create a web.config file in the sub directory.

And add the following code in it:

<configuration>
<system.web>
<authentication mode="none" />
</system.web>
</configuration>

And thats all that should be in the file.
This will override the authentication settings from the parent folder.

Darshan