I have an web application that has been working great.... until now. I've got a ton of pages that need to be secure using the forms authentication.
I've been adding;
<location path="editCompanyLogo.aspx"><system.web><authorization><deny users="?" />
for each page, but the problem is that that is getting a little too tedius.... so I know you can cause authentication for an entire directory, so I removed all the location tags, moved all the files that are for "members" into the /members directory, and added the following
<forms name=".members" path="/" loginUrl="login.aspx" protection="All" timeout="15" />
Basically I want to restrict anonymous access to any aspx page inside the member/ directory which is a sub directory of my web app.