Secure area aspx + c#
-
Basically i would like to create a members only area where users need to be logged in to view and download files like .doc and jpgs I've used forms authentication to prevent users navigating in the members area fine. The problem is if a person uses the absolute path for a file eg: .doc or .jpg they are able to access the file fine. Any ideas on how to stop this or any articles which i can read? Cheers, Spanky:-D
-
Basically i would like to create a members only area where users need to be logged in to view and download files like .doc and jpgs I've used forms authentication to prevent users navigating in the members area fine. The problem is if a person uses the absolute path for a file eg: .doc or .jpg they are able to access the file fine. Any ideas on how to stop this or any articles which i can read? Cheers, Spanky:-D
I've used James Coleman's[^] tutorial but its not very feasible. Obviously theres rarely any hosts who will allow files to be stored on their server. The other method was using IIS to add a map path for the file types which need authenticating again hosts rarely alter IIS for you. Anyone had exp of SSL ?