Welcome to MobyThreads.com!
FAQFAQ      ProfileProfile    Private MessagesPrivate Messages   Log inLog in
All support for the MobyThreads Threaded phpBB MOD can now be found on welsolutions at this forum

single entry point iis web site

  
   Web Hosting and Web Master Forums (Home) -> IIS RSS
Next:  IIS 5.1 running locally - can't access website  
Author Message
muhammed_rahma

External


Since: Oct 31, 2003
Posts: 3



(Msg. 1) Posted: Fri Oct 31, 2003 11:51 am
Post subject: single entry point iis web site
Archived from groups: microsoft>public>inetserver>iis (more info?)
I have created an intranet site for my organization. user
has to go through NT Domain login process to enter the
site. I do not want to use IIS provided Windows Integrated
Authentication or Basic Authentication process to handle
this login process.

I am using ADSI object for authentication via a web form.
In the web site, the files format are asp, html,ms
dcument,pdf etc. In asp files I can check if the users
provided a valid login name and password at the login page.
How do I check when user request for one of the doc or pdf
file. Let me give an example.
If users type
http://intranet.mycompany.com/info/info.asp
info.asp page will check if users pass login id and
password. If not, info.asp page will redirect to
http://intranet.mycompany.com/login.asp which is a login
page.

If users type
http://intranet.mycompany.com/infodoc/infodoc.doc I have
no way to check if the users are logged on or not.
How can I solve this problem?

or is there any way I can get the request url from my site
index page before it goes to its destination?

or Can I make my web site always a single and only entry
point?

I really appreciate your feedback.

Thanks
Jyoti

 >> Stay informed about: single entry point iis web site 
Back to top
Login to vote
user164

External


Since: Aug 01, 2003
Posts: 172



(Msg. 2) Posted: Fri Oct 31, 2003 3:28 pm
Post subject: Re: single entry point iis web site [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
 > I have created an intranet site for my organization. user
 > has to go through NT Domain login process to enter the
 > site. I do not want to use IIS provided Windows Integrated
 > Authentication or Basic Authentication process to handle
 > this login process.

Seeing as this is on an intranet, *not* using integrated authentication
seems like more work than is necessary. But it's fine, if that's what you
prefer.

 > How do I check when user request for one of the doc or pdf

Assuming that the documents are in a location addressable from the browser,
you need proper file system permissions. Actually, you should have properly
set NTFS permssions, regardless.

Using ASP and ADSI to authenticate and check permissions for web objects is
fine, but for other types of objects and documents, you need to assign
proper NTFS permissions.

 > or is there any way I can get the request url from my site
 > index page before it goes to its destination?

Not really. If the link is to a .doc or .pdf, then that's that. If they
have access to the file according to the file system ACL, then they have
access to the file.

 > or Can I make my web site always a single and only entry
 > point?

I'm not sure that I understand your use of the phrase "single and only entry
point." If you're managing permissions for web pages using ASP alone, you
need a universal include structure that does a check on every page to ensure
that the user is authorized to view that page. If done correctly, it
shouldn't matter if the user pulls up the login page or some bookmarked page
that's deep within the site--if they haven't authenticated, they should be
sent to the login page.<!-- ~MESSAGE_AFTER~ -->

 >> Stay informed about: single entry point iis web site 
Back to top
Login to vote
user658

External


Since: Aug 26, 2003
Posts: 1525



(Msg. 3) Posted: Fri Oct 31, 2003 8:49 pm
Post subject: Re: single entry point iis web site [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Fri, 31 Oct 2003 08:51:57 -0800, "jyoti"
<muhammed_rahman.DeleteThis@hotmail.com> wrote:

 >I have created an intranet site for my organization. user
 >has to go through NT Domain login process to enter the
 >site. I do not want to use IIS provided Windows Integrated
 >Authentication or Basic Authentication process to handle
 >this login process.

Ummm... Windows Integrated uses the NT Domain login...

 >I am using ADSI object for authentication via a web form.
 >In the web site, the files format are asp, html,ms
 >dcument,pdf etc. In asp files I can check if the users
 >provided a valid login name and password at the login page.
 >How do I check when user request for one of the doc or pdf
 >file. Let me give an example.
 > If users type
 >http://intranet.mycompany.com/info/info.asp
 >info.asp page will check if users pass login id and
 >password. If not, info.asp page will redirect to
 >http://intranet.mycompany.com/login.asp which is a login
 >page.
 >
 >If users type
 >http://intranet.mycompany.com/infodoc/infodoc.doc I have
 >no way to check if the users are logged on or not.
 >How can I solve this problem?

NTFS permissions on the files/folders. You're using the NT login,
create a group for your users, assign the users to the group and give
that group permission to the files/folders in question. Remove access
for other accounts/groups.

This is basic NT administration. Might want to check:

<a style='text-decoration: underline;' href="http://www.iisfaq.com/default.aspx?View=P78&P=145" target="_blank">http://www.iisfaq.com/default.aspx?View=P78&P=145</a>

Jeff<!-- ~MESSAGE_AFTER~ -->
 >> Stay informed about: single entry point iis web site 
Back to top
Login to vote
Display posts from previous:   
Related Topics:
Entry site for password protected site - I am trying to get an entrance page with an OK and Cancel that leads to a Windows Authentication password protected site. How would I do this? When I go to www.mysite.com it asks for the password before I get to the entrance page.

Data entry blocked by large reports - When my users run large reports it blocks data entry. How can I prevent this from happening? Can I make the reports run in a different process from data entry? Thanks.

Transparently redirecting /products/* to a single url - I'd like to transparently redirect all requests for a folder to single file, so for example: /products/slinky.html /products/hoolahoop.html /products/foobar.html all go to: /products.asp but this needs to be completely transparent to the client. It....

ISA Server, Can I restrict a single username from Yahoo? - Need a way to restrict a specific username from going across the ISA server. Or a way to tell from which computer a user is login on to a specific Yahoo account.... I notice that in the url for login, the user name is present... Any hints please..

Web Site?!?!? - I have a website that is running in one of my servers inside my network which uses a private ip address. When I try to open my internet explorer and type http://www.mywebsite.com I can't access it but when I change it to http://mywebsite.com it works...
   Web Hosting and Web Master Forums (Home) -> IIS All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



[ Contact us | Terms of Service/Privacy Policy ]