Is there a way to get URI-based access control directly in IIS that works with static content, ASP, WCF services and something else that looks like an HTTP request?
In particular, I want access control as likely as possible to make a decision before IIS even tries to figure out what to service for the request.
- This link is a kind of hint that this cannot be done, but it is old and I would be very surprised if I didn’t search.
- This link contains several other options (and a less "aggressive" community)
An ideal solution would be to declare that everything (static and dynamic content) under a given URL (for example, https://dns.name/some/path/*) needs a login, and the user must be in some group. In addition, I would prefer to install it with the username / passord file (at least for now), rather than with AD or with the Windows account system.
In short, I need access control, and I don't want to write code to get it.
It seems to be connected, but I'm not sure that it is so.
source
share