I have been creating a pared-down content management system within a ASP.NET application that allows users to upload/download data from a network share. I can make it work with providing access to everyone on the folder; however I am trying to lock it down so that the only way these documents can be accessed is by the application. The way I thought that I could achieve this is by authenticating as a "dummy" user when uploading/downloading files or creating subdirectories within the folder. However, the application is set up that the user first authenticates against Active Directory(Integrated Windows) and then proceeds with their work from there.
The real question is, does anyone know if the SystemIO uses the ASPNET process user, or the user that authenticates against the application? And, how to change the user credentials in an ASP.NET app that accesses the file system?
If there are any good articles or FAQ's that I have missed, please let me know, and I'll be happy to look at them. Anything to get pointed in the right direction would be a great help.
Thanks,
JC
The real question is, does anyone know if the SystemIO uses the ASPNET process user, or the user that authenticates against the application? And, how to change the user credentials in an ASP.NET app that accesses the file system?
If there are any good articles or FAQ's that I have missed, please let me know, and I'll be happy to look at them. Anything to get pointed in the right direction would be a great help.
Thanks,
JC