I've been searching the web and google for a while now, and can't find
how to do exactly what I want to do. I'm sorry if this has been
answered before, I just cant find it.
My idea is to have a folder /root/public/secure which has a web.config
file in it like so
<deny users="?" />
Now in that folder, protected.aspx is protected, but protected.pdf is
<add verb="*" path="*.mdb" type="System.Web.HttpForbiddenHandler"
to protect my .mdb. But this dis-allows downloading. I want to allow
authenticated downloading. Something like
System.Web.HttpAuthenticatedHandler. But I can ...