C#® Developer's Guide to ASP.NET, XML, and ADO.NET

File Authorization

Now that you know how users are authenticated, you need to control what resources they have access to. File authorization is the method of authorization that existed in ASP.old and migrates forward in ASP.NET.

NOTE

File authorization is the only method of authorization that IIS supports. If Allow Anonymous is off in IIS, authorization is handled by IIS. If Allow Anonymous is on, ASP.NET applies File Authorization.

File Authorization utilizes Access Control Lists (ACLs) to specify the roles that a user must be in to access a file. After the user has been authenticated, the File Authorization module will take each group in the ACL for a file and call IsInRole() on the passing of the name of the group as a parameter to IsInRole() ...

Get C#® Developer's Guide to ASP.NET, XML, and ADO.NET now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

C#® Developer's Guide to ASP.NET, XML, and ADO.NET by Jeffrey P. McManus, Chris Kinsman

File Authorization

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly