.NET Security and Cryptography

Implementing ASP.NET Authorization

Authorization is a process in which you determine whether an authenticated user is granted access to a certain page or resource. In ASP.NET there are two primary ways to authorize access to a given resource: file authorization and URL authorization. Let us discuss these two types scrupulously.

File Authorization

File authorization is carried out against the authenticated account provided by IIS. It is executed by the FileAuthorizationModule. It verifies the Access Control List (ACL)^[16] or permissions on a resource to determine whether the authenticated user has privilege to access the protected resource. The FileAuthorizationModule provides authorization services against the file system ACLs. You can configure ...

Get .NET Security and Cryptography now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

.NET Security and Cryptography by Peter Thorsteinson, G. Gnana Arun Ganesh

Implementing ASP.NET Authorization

File Authorization

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly