The URL for the administration section of my website always starts with Admin/ .

Question

0

Asked: May 12, 20262026-05-12T12:26:29+00:00 2026-05-12T12:26:29+00:00

The URL for the administration section of my website always starts with Admin/ .

0

The URL for the administration section of my website always starts with Admin/. Is it possible in ASP.NET MVC to restrict access to users by using this part of the URL?

Obviously I would keep the [Authorize(Roles = "Administrator")] on appropriate controllers and actions but I wonder if it would be quicker for the application if it can just look at the URL instead of stepping into code.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-12T12:26:29+00:00

Found the answer in Steven Sanderson’s book, Pro ASP.NET MVC Framework.

Put the following code in your web.config file.

<location path ="Admin">
  <system.web>
    <authorization>
      <deny users="?"/>
      <allow roles="Administrator"/>
      <deny users="*"/>
    </authorization>
  </system.web>
</location>

This means for any URL matching ~/Admin/*, the application will deny access to unauthenticated visitors or
any other visitors other than those with the role ‘Administrator’.

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

The URL for the administration section of my website always starts with Admin/ .

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply