We have a strange problem when setting up a new Windows 2003 Server with IIS6.0 and ASP.NET 2.0, our site is built using ASP.NET forms authentication with general authorization to restrict access to all users and allow explicitly static, home pages etc., - setting up web.config for auth forms, as shown below:
<authentication mode="Forms">
<forms name="appNameAuth" path="/" loginUrl="~/Pages/Users/Login.aspx" protection="All" timeout="60" defaultUrl="~/Pages/Inner.aspx">
</forms>
</authentication>
<authorization>
<deny users="?"/>
</authorization>
The problem is this:
If we access the site as localhost / default.aspx, it works fine and can view the home page of our website, but if we access it with localhost /, we expect to see default.aspx (since it is installed as the default document) but for some reason ASP.NET Forms Authentication considers the "/" to be a secure page or content and redirects me to the login page.
I still could not tell "/", like allow = *, in web.config ... I thought that it could be related to some problems with NTFS and IIS permissions with folders, it couldnβt get many updates ..
Any help to solve this problem would be appreciated.
thank
Bhaskara
source
share