Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations IamaSherpa on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Authorization

Status
Not open for further replies.
Ladyhawk

Ladyhawk

Programmer
Jan 22, 2002
534
AU
If I have the following authorization set, in which order are they applied or doesn't it matter?

<authorization>
<deny users=&quot;tania, megan&quot;>
<deny users=&quot;?&quot;>
<allow users=&quot;*&quot;>
</authorization>

The doco I have says that the <allow users=&quot;*&quot;> is redundant, but I don't see how. ? is anonymous.

Ladyhawk. [idea]
** ASP/VB/Java Programmer **
 
Sort by date Sort by votes
Who are you actually wanting to deny/allow? Something doesn't make sense: You are first denying ALL ANONYMOUS USERS and then you are allowing ALL USERS (both anonymous and authenticated).

This is poor design -- and without trying it out, I am guessing ALL AUTHENTICATED USERS are only allowed.

Hope this helps a bit.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

xpblueScreenOfDeath
  • Locked
  • Question
Authentication and Authorization?
Replies
5
Views
49
xpblueScreenOfDeath
xpblueScreenOfDeath
Sammy145
  • Locked
  • Question
Posting xml from asp.net doing credit card authorization 1
Replies
4
Views
52
ca8msm
ca8msm
wallaceoc80
  • Locked
  • Question
web.config for authorization
Replies
1
Views
36
adamroof
adamroof
cathiec
  • Locked
  • Question
Authorization - web.config
Replies
1
Views
49
crazyboybert
crazyboybert
dpdoug
  • Locked
  • Question
ASP.NET Authorization question
Replies
4
Views
42
dpdoug
dpdoug

Part and Inventory Search

Sponsor

Back
Top