Using web.config directory security and extensionless urls

Posted by Matt Brailsford on Stack Overflow See other posts from Stack Overflow or by Matt Brailsford
Published on 2010-02-19T20:43:10Z Indexed on 2010/03/12 21:47 UTC
Read the original article Hit count: 267

Hi Guys,

I'd like to use the built in directory security features built into the web.config to restrict access to child pages of a parent page. My structure is as follows:

  • Members
  • Members/News
  • Members/Press
  • Members/Movies

Users should be able to have access to the members parent page, but not child pages. My problem is, because I am using extensionless URLs, the web.config thinks this is a directory and so access is blocked. Is there a way to say only restrict access for sub pages?

© Stack Overflow or respective owner

Related posts about web-config

Related posts about security