Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 281
  • Last Modified:

Prevent webpage access using forms authentication

Dear experts,

I have used the following two articles to setup forms security with roles.

http://support.microsoft.com/kb/301240
http://support.microsoft.com/kb/311495

Now I can use the roles to access or not give access, but I am wondering how to do this best.

I can show or hide menu items bases on the role, but a user can then still access pages if he/she manual enters the url manually. What is the best approach to prevent users from accessing a webpage?

Best regards,
MB
0
mark_norge
Asked:
mark_norge
1 Solution
 
markmiddlemistCommented:
There are 2 ways you can do this:

1 - In Code - In your page load handler include the line:

if (Roles.IsUserInRole("RoleName")) then
  Response.Redirect("/")
end if

or, the easier way is to use your web.config file - http://www.codeproject.com/Articles/2905/Role-based-Security-with-Forms-Authentication
0
 
mark_norgeAuthor Commented:
Both solution worked fine indeed. I prefer the second.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now