I have a web application using the .Net 2.0 framework. The whole website is restricted to authenticated users using Windows authentication. These rules are set in the web.config file the following way :\[code\]<location path="/"> <system.web> <authorization> <allow roles="CustomerAdministrator, Manager"/> <deny users="*"/> </authorization> </system.web></location><location path="Path/To/Public/File.aspx"> <system.web> <authorization> <allow users="*"/> </authorization> </system.web></location>[...]\[/code\]As shown above, I have one page that I want to be public. Up to this point, everything works fine. We recently added url rewriting for nicer urls, so I set a rewrite rule for the public page :\[code\]<RewriterConfig> <Rules> <RewriterRule> <LookFor>~/Public</LookFor> <SendTo><![CDATA[~/Path/To/Public/File.aspx]]></SendTo> </RewriterRule> </Rules></RewriterConfig>\[/code\]Now, when accessing the public page by its direct url, it works as expected (no authentication required), but when I try to access the page through its rewrited url, it asks for authentication.Does anyone know where this problem my come from ?
ASP.Net URL rewriting and authentication
- Thread starter oFFScull
- Start date