How to protect my files page.aspx.cs
Hi
Is there a way to protect my files page.aspx.cs from users to see its content?
Thanks in advance
Is there a way to protect my files page.aspx.cs from users to see its content?
Thanks in advance
users cannot see .cs files....
page.aspx.cs is needed when deployed, it is compiled into the dll under directory bin
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
when user makes a req for cs file it throws an error
Description: The type of page you have requested is not served because it has been explicitly forbidden. The extension '.cs' may be incorrect. Please review the URL below and make sure that it is spelled correctly.
Description: The type of page you have requested is not served because it has been explicitly forbidden. The extension '.cs' may be incorrect. Please review the URL below and make sure that it is spelled correctly.
it is by default protected from browsing:
inside your machine config:
<httpHandlers>
<add verb="*" path="*.vjsproj" type="System.Web.HttpForbi
<add verb="*" path="*.aspx" type="System.Web.UI.PageHa
<add verb="*" path="*.ashx" type="System.Web.UI.Simple
<add verb="*" path="*.asmx" type="System.Web.Services.
<add verb="*" path="*.rem" type="System.Runtime.Remot
<add verb="*" path="*.soap" type="System.Runtime.Remot
<add verb="*" path="*.asax" type="System.Web.HttpForbi
<add verb="*" path="*.ascx" type="System.Web.HttpForbi
<add verb="GET,HEAD" path="*.dll.config" type="System.Web.StaticFil
<add verb="GET,HEAD" path="*.exe.config" type="System.Web.StaticFil
<add verb="*" path="*.config" type="System.Web.HttpForbi
<add verb="*" path="*.cs" type="System.Web.HttpForbi
<add verb="*" path="*.csproj" type="System.Web.HttpForbi
<add verb="*" path="*.vb" type="System.Web.HttpForbi
<add verb="*" path="*.vbproj" type="System.Web.HttpForbi
<add verb="*" path="*.webinfo" type="System.Web.HttpForbi
<add verb="*" path="*.asp" type="System.Web.HttpForbi
<add verb="*" path="*.licx" type="System.Web.HttpForbi
<add verb="*" path="*.resx" type="System.Web.HttpForbi
<add verb="*" path="*.resources" type="System.Web.HttpForbi
<add verb="GET,HEAD" path="*" type="System.Web.StaticFil
<add verb="*" path="*" type="System.Web.HttpMetho
</httpHandlers>
and since the .cs is mapped to the asp_net.dll , anyone trying to view your code behind files will be processed by the ForbiddenHandler
inside your machine config:
<httpHandlers>
<add verb="*" path="*.vjsproj" type="System.Web.HttpForbi
<add verb="*" path="*.aspx" type="System.Web.UI.PageHa
<add verb="*" path="*.ashx" type="System.Web.UI.Simple
<add verb="*" path="*.asmx" type="System.Web.Services.
<add verb="*" path="*.rem" type="System.Runtime.Remot
<add verb="*" path="*.soap" type="System.Runtime.Remot
<add verb="*" path="*.asax" type="System.Web.HttpForbi
<add verb="*" path="*.ascx" type="System.Web.HttpForbi
<add verb="GET,HEAD" path="*.dll.config" type="System.Web.StaticFil
<add verb="GET,HEAD" path="*.exe.config" type="System.Web.StaticFil
<add verb="*" path="*.config" type="System.Web.HttpForbi
<add verb="*" path="*.cs" type="System.Web.HttpForbi
<add verb="*" path="*.csproj" type="System.Web.HttpForbi
<add verb="*" path="*.vb" type="System.Web.HttpForbi
<add verb="*" path="*.vbproj" type="System.Web.HttpForbi
<add verb="*" path="*.webinfo" type="System.Web.HttpForbi
<add verb="*" path="*.asp" type="System.Web.HttpForbi
<add verb="*" path="*.licx" type="System.Web.HttpForbi
<add verb="*" path="*.resx" type="System.Web.HttpForbi
<add verb="*" path="*.resources" type="System.Web.HttpForbi
<add verb="GET,HEAD" path="*" type="System.Web.StaticFil
<add verb="*" path="*" type="System.Web.HttpMetho
</httpHandlers>
and since the .cs is mapped to the asp_net.dll , anyone trying to view your code behind files will be processed by the ForbiddenHandler
type error:
page.aspx.cs is not necessary for deployment, so you don't need to put it on
the web server at all.
page.aspx.cs is not necessary for deployment, so you don't need to put it on
the web server at all.