Secure individual pages with asp.net membership provider

Question

I'm using the asp.net membership and role provider tools and can't figure out how to require login for specific pages. I tried putting the pages in a seperate directory and adding this to my web.config but it still denies access after succesful login.

<location path="Purchase">
  <system.web>
    <authorization>
     <deny users="*"/>
    </authorization>
  </system.web>
</location>

Your Purchase location denies access to all users. – Ladislav Mrnka Jan 09 '11 at 23:17 — Ladislav Mrnka, Jan 09 '11 at 23:17
Did my response not answer your question? – Jonathan Wood Jan 11 '11 at 19:10 — Jonathan Wood, Jan 11 '11 at 19:10

score 3 · Answer 1 · answered Jan 10 '11 at 01:08

3

'*' refers to all users (logged in or otherwise). If you want to refer only to users who are not authenticated (not logged in), use '?'.

answered Jan 10 '11 at 01:08

Jonathan Wood

65,341
71
269
466

Secure individual pages with asp.net membership provider

1 Answers1