ofirkif Posted February 9, 2012 Share Posted February 9, 2012 Hi everyone,I have a business site that I need to secure.I wrote the site in ASP and the platform is IIS 7.I need that the users must login to see the web pages and the photos.I mean that just authorized users will have access. The first way i thought is to make ASP session after validating the user and password of each try via SQL database, this is good way I think and I know to do so.Now by this way any anonymous user will not have any access to webpages, but the problem is that if the user will type direct photo URL like mydomain.com/images/1.jpg any user have access and even anonymous can see them.I need that only sessioned users will have access, those that not authorized, I want to deny.How can I do it?Your help will very appreciated as I tried so many searches and didn't find anything helpful.Thank you!Ofir Link to comment Share on other sites More sharing options...
justsomeguy Posted February 9, 2012 Share Posted February 9, 2012 You can use HTTP authentication for specific files and directories in IIS. http://www.google.com/search?client=opera&rls=en&q=iis+authentication&sourceid=opera&ie=utf-8&oe=utf-8&channel=suggest Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.