<deny users="?" /> <allow users="*" />

Ask a Question related to ASP.NET Security, Design and Development.

  1. Kylin #1

    Default <deny users="?" /> <allow users="*" />

    <!-- security -->
    <authorization>
    <deny users="?" />
    <allow users="*" />
    </authorization>

    I know the <deny user="?" /> mean that deny the anonymous user ,
    And I know the <allow user="*"> mean that allow all the user,
    but they are together ,
    what is the meaning ?

    --
    FireCrow Studio
    Kylin Garden
    ICQ:156134382


    Kylin Guest
    Reply With Quote Reply With Quote

    2. Similar Questions and Discussions

    1. Publisher users can't access pages because "user is editing it" - but they aren't! wtf?
      Man, if it isn't one thing, it's another.... I've got DW8.0.2 and the Studio 8 suite. I've created a site in DW and have enabled Contribute...
    2. How do you make "Images > From Website" available tonon-admin users?
      From the admin side, we are able to insert pictures using Images > From Website rather than going into shared assets. However, the "From Website"...
    3. Domain does not show up as a "location" for choosing users (server 2003)
      I have a windows 2003 server. I added a new Windows 2003 server as a member server. However when I try to set permissions on a folder on this 2003...
    4. Vacation works for "real" email address but not for aliases -- except for some users
      Forgive me for my ignorance but sendmail is greek to me. So here's my problem, with as much info as I can think of. I am running Red Hat 9 with...
    5. Forms Authentication - "Deny users = ?" necessary
      Thanks for your reply Hernan. I can't believe Authentication and Authorization are mixed... If I want to identify/authenticate a user (for...
  2. Yunus #2

    Default Re: <deny users="?" /> <allow users="*" />

    web.config file is interpreted line by line. This means deny anonymous user
    and accepten users which are authenticated. When a user request wants to be
    authorized, ASP.NET looks if it is a guest, if yes denies, otherwise allows
    user.

    Try to change line order and see what happens like:
    <!-- security -->
    <authorization>
    <allow users="*" />
    <deny users="?" />
    </authorization>

    --

    Thanks,
    Yunus Emre ALPÖZEN
    BSc, MCAD.NET

    "Kylin" <com> wrote in message
    news:%phx.gbl... 


    Yunus Guest
    Reply With Quote Reply With Quote
  3. Ravichandran #3

    Default RE: <deny users="?" /> <allow users="*" />

    "?" stands for anonymous users and "*" for all users. So,

    <allow users="Jv"/>
    <deny users="?"/>

    will allow user "Jv" but deny all anonymous users. You can use to separate
    multiple identiies.

    <allow users="Jv, Kylin"/>
    <deny users="?"/>

    with regards,

    J.v.

    "Kylin" wrote:
     
    Ravichandran Guest
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139