<authentication mode="Forms">
<forms name="ManageSystem" loginUrl="login.aspx" protection="All" path="a目录/" />
</authentication>
<authorization>
<deny users="?"/> <!-- 允许所有用户 -->
<!-- <allow users="[逗号分隔的用户列表]"
roles="[逗号分隔的角色列表]"/>
<deny users="[逗号分隔的用户列表]"
roles="[逗号分隔的角色列表]"/>
-->
</authorization>
<forms name="ManageSystem" loginUrl="login.aspx" protection="All" path="a目录/" />
</authentication>
<authorization>
<deny users="?"/> <!-- 允许所有用户 -->
<!-- <allow users="[逗号分隔的用户列表]"
roles="[逗号分隔的角色列表]"/>
<deny users="[逗号分隔的用户列表]"
roles="[逗号分隔的角色列表]"/>
-->
</authorization>
一、设置所有页面都需要验证
<system web>
<authentication mode="Forms">
<forms loginUrl = "Lonin.aspx" name = ".ASPXFORMSAUTH"/>
</authentication>
</system web>
二、再特别设置对某个目录下的页面不需要验证(NoAuto为不需要验证的页面所在的目录)
<location path="NoAuto">
<system.web>
<authorization>
<allow users="*" />
</authorization>
</system.web>
现在我的web.config是这样写的:
<configuration>
<location path="Member/">
<system.web>
<authorization>
<deny users="?"/>
</authorization>
</system.web>
</location>
<system.web>
<authentication mode="Forms">
<forms loginUrl = "Login.aspx" name=".TestForms" />
</authentication>
<authorization>
<allow users="*" /> <!-- 允许所有用户 -->
</authorization>
</system.web>
</configuration>
哪位高人帮帮我
<system.web>
<authentication mode="Forms">
<forms name=".ADUAUTH" loginUrl="secure\logon.aspx" protection="All">
</forms>
</authentication>
<authorization>
<allow users="*" />
</authorization>
</system.web>在Member文件夹下的web.config文件下:
<configuration>
<system.web>
<customErrors
defaultRedirect="../errorpage.aspx"
/> <!-- security -->
<authorization>
<deny users="?" />
<allow users="*" />
</authorization>
</system.web>
</configuration>