Home/ Questions/Q 6186733
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-24T01:56:21+00:00

I have the following site structure: What I’d expect this to do was to

  • 0

I have the following site structure:

enter image description here

What I’d expect this to do was to deny anyone who isn’t a logged-in user with the RegisteredUser role, except on Reset.aspx and Validation.aspx, where it would allow anyone (logged-in or not) to access, but this isn’t the case right now.

Everyone who isn’t a RegisteredUser isn’t able to access these two pages, what am I doing wrong?

Update Even this won’t work:

<?xml version="1.0"?>

<configuration>
  <location path="Reset.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
  </location>

  <location path="Validation.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
  </location>
</configuration>

It doesn’t make any sense, isn’t this supposed to be the system default?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You do not need to map paths, only file names:

    <?xml version="1.0"?>

<configuration>
  <location path="Reset.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
        <deny />
      </authorization>
    </system.web>
  </location>

  <location path="Validation.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
  </location>

  <system.web>
    <authorization>
      <allow roles="RegisteredUser" />
      <deny users="*" />
    </authorization>
  </system.web>
</configuration>
    • 0