Home/ Questions/Q 3244508
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-17T18:33:34+00:00

I have forms authentication on my MVC site and the default route is set

  • 0

I have forms authentication on my MVC site and the default route is set to send users to /home/index. Home/index is excluded from the login requirement, via a Web.config location section. if I type in http://Example/home/index, I go to the home page as expected, but if I just do http://Example, I get redirected to the logon page.

If I turn off authentication and do http://Example, the default route works fine, and I’m sent to the home page.

Why is authentication not respecting the default route? Thanks!

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You shouldn’t be using the <location> element in web.config to handle authorization in an ASP.NET MVC application as it might clash with your routes. This is used in standard WebForms applications but it is considered bad practice in MVC.

    The recommended way to handle this is to decorate your controllers/actions with the [AuthorizeAttribute]. So get rid of all location elements in web.config and decorate.

    • 0