I have a site like this:
- login.asp: users log in with a username and password
- home.asp: if log in is succescul, a list of links is shown. Some links are links to documents in our server. But these documents should only be seen by authorized users (i.e. logged in users). (for example, one link shows our file aaa.doc)
If someone who is not logged in, or doesn't even know about our system, write this URL in their browser:
.... they are automatically redirected to login.asp
However, if this same person writes:
.... there's no way to redirect them to login.asp, and the file is shown to unauthorized users.
Note that authorized users of this site are web users, not server users. So I do *NOT* want to protect the folder and make them write a server username and password every time they try to access the document url. I want them to be redirected to login.asp every time they write www.oursite.com/aaa.doc
on their browsers.