|
wonky <authorization> (order matters?)
hello,
i am using Windows authentication w/ my web app and lock it down via roles. in my testing it seems like the *order* of the <authorization> elements matters. eg, this works: <authorization> <allow roles="Foo" /> <deny users="?" /> <deny users="*" /> </authorization> but this doesnt: <authorization> <deny users="?" /> <deny users="*" /> <allow roles="Foo" /> </authorization> ....for the latter my browser keeps popping a credentials dialog, even tho im in the Foo role. is this expected behavior? ASP.NET v2. thanks! sm |
Re: wonky <authorization> (order matters?)
Yes, it does matter. It evaluates each rule in order until it matches and
then it applies the allow or deny based on the match. Joe K. -- Joe Kaplan-MS MVP Directory Services Programming Co-author of "The .NET Developer's Guide to Directory Services Programming" http://www.directoryprogramming.net -- "SpaceMarine" <spacemarine@mailinator.com> wrote in message news:1a2a6639-2b07-44cd-9451-79f20a085cdf@8g2000hse.googlegroups.com... > hello, > > i am using Windows authentication w/ my web app and lock it down via > roles. in my testing it seems like the *order* of the <authorization> > elements matters. > > eg, this works: > > <authorization> > <allow roles="Foo" /> > <deny users="?" /> > <deny users="*" /> > </authorization> > > but this doesnt: > > <authorization> > <deny users="?" /> > <deny users="*" /> > <allow roles="Foo" /> > </authorization> > > ...for the latter my browser keeps popping a credentials dialog, even > tho im in the Foo role. > > > is this expected behavior? ASP.NET v2. > > > thanks! > sm |
| All times are GMT. The time now is 12:21 AM. |
Powered by vBulletin®. Copyright ©2000 - 2013, vBulletin Solutions, Inc.
SEO by vBSEO ©2010, Crawlability, Inc.