Login required for Default/home page, even with anonymous access

Question

Login required for Default/home page, even with anonymous access

Donald Symmons 3,096

There is something that crossed my mind while trying to publish and view my test web application on a live server. After publishing the web application, I tried to view the application but I redirected me to the login page. But it was supposed to take me to the Default page. Then I figured that I had done routing in the Global asax file to some pages that anonymous or every user can be able to view. Does this mean web forms authentication in the web config does not recognize routing in Global asax file? Please I want help in learning how to resolve this. Thank you

<system.web>
    <trust level="Full"/>
    <sessionState timeout="40"></sessionState>
    <authentication mode="Forms">
      <forms name="login" timeout="40" cookieless="UseCookies" loginUrl="Login.aspx" defaultUrl="overview.aspx" slidingExpiration="true" />
    </authentication>
    <authorization>
      <deny users="?" />
    </authorization>
    <compilation debug="true" targetFramework="4.7.2" />
    <httpRuntime targetFramework="4.7.2" maxRequestLength="3145728" />
    <customErrors mode="Off" />
    <pages enableEventValidation="false">
      <controls>
        <add tagPrefix="ajaxToolkit" assembly="AjaxControlToolkit" namespace="AjaxControlToolkit" />
      </controls>
    </pages>
  </system.web>
<location path="Signup.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
  </location>
  <location path="Default.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
  </location>
  <location path="About.aspx">
    <system.web>
      <authorization>
        <allow users="*" />
      </authorization>
    </system.web>
  </location>

Global.asax

 void Application_Start(object sender, EventArgs e) 
    {
        // Code that runs on application startup
                ScriptManager.ScriptResourceMapping.AddDefinition("jquery", 
    new ScriptResourceDefinition
{
Path = "~/scripts/jquery-1.7.2.min.js",
DebugPath = "~/scripts/jquery-1.7.2.min.js",
CdnPath = "http://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.4.1.min.js",
CdnDebugPath = "http://ajax.aspnetcdn.com/ajax/jQuery/jquery-1.4.1.js"
});

         RegisterRoutes(RouteTable.Routes);
    }
 static void RegisterRoutes(RouteCollection routes)
    {
        routes.MapPageRoute("About", "about", "~/About.aspx");
        routes.MapPageRoute("Login", "login", "~/Login.aspx");
        routes.MapPageRoute("Signup", "signup", "~/Signup.aspx");
    }

QiYou-MSFT 4,341 Reputation points Microsoft External Staff

2023-04-24T07:27:13.33+00:00

Hi @Donald Symmons

I don't quite understand what your needs are. It appears to be a site design with user permissions.

First of all, if you are redirected to the wrong page after running the program, you can right-click on the aspx file and select "Set as Start Page" to set the default page.

In fact, you can also create relative folders based on administrator privileges. By assigning the web.config file to the relative folder, and then implementing <authorization>the access permission function through.

Best Regards

Qi You
QiYou-MSFT 4,341 Reputation points Microsoft External Staff

2023-04-24T07:46:37.85+00:00

Hi @Donald Symmons

I would like to ask if your html page is written by yourself or the following page.

Best Regards

Qi You
Donald Symmons 3,096 Reputation points

2023-04-24T09:04:56.9933333+00:00

Hi @QiYou-MSFT , you mentioned that you don't understand what my needs are; well I don't understand what you've an by that because in my question I've stated the issue I encountered when I try to view my Web application over the Internet. The solution you gave is for local server and I don't have issue with accessing the default page on local sever. The thing is, I'm new to all this, and learning in order to see if I can really build a Web application that can run on a well, I needed to test my work on a live server. And I did that.. now that's where the issue of not being able to access the default page as the authentication in the Web configuration file had blocked access to the default page. However I can access the default when I right-click on it and view in the browser, but this is only on the local seever. But I'm not talking about local server, it's a live server
Donald Symmons 3,096 Reputation points

2023-04-24T09:09:36.8233333+00:00

Hi , it appears you did not really read my question well enough. If you check my question again, you will get to see that I mentioned "live server", not local server. I don't have any issues in my local server. Infact, in my local server everything is working perfectly. When I run the program in my local server, the Default.aspx is the first page that comes on, so there is no issue there. But this doesn't happen on the live server.
Donald Symmons 3,096 Reputation points

2023-04-24T09:17:19.64+00:00
Hi @QiYou, I think I will have to add this in the Web config before publishing it on to a live server

<defaultDocument enabled="true"> <files> <clear/> <add value="Default.aspx"/> </files> </defaultDocument>

Answer accepted by question author

QiYou-MSFT 4,341 Microsoft External Staff

Hi @Donald Symmons

You can try adding the following code to web.config:

<configuration>
   <system.webServer>
      <defaultDocument enabled="true">
         <files>
            <add value="Default.aspx" />
         </files>
      </defaultDocument>
   </system.webServer>
</configuration>

This is the relevant introductory document:

Document

At the same time, on the anonymous authentication settings of IIS, I think the following documentation will also help you:

Document

Best Regards,

Qi You

If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

0 comments

2 additional answers

Your answer

QiYou-MSFT 4,341 Reputation points Microsoft External Staff

2023-04-24T07:27:13.33+00:00

Hi @Donald Symmons

I don't quite understand what your needs are. It appears to be a site design with user permissions.

First of all, if you are redirected to the wrong page after running the program, you can right-click on the aspx file and select "Set as Start Page" to set the default page.

In fact, you can also create relative folders based on administrator privileges. By assigning the web.config file to the relative folder, and then implementing <authorization>the access permission function through.

Best Regards

Qi You
QiYou-MSFT 4,341 Reputation points Microsoft External Staff

2023-04-24T07:46:37.85+00:00

Hi @Donald Symmons

I would like to ask if your html page is written by yourself or the following page.

Best Regards

Qi You
Donald Symmons 3,096 Reputation points

2023-04-24T09:04:56.9933333+00:00

Hi @QiYou-MSFT , you mentioned that you don't understand what my needs are; well I don't understand what you've an by that because in my question I've stated the issue I encountered when I try to view my Web application over the Internet. The solution you gave is for local server and I don't have issue with accessing the default page on local sever. The thing is, I'm new to all this, and learning in order to see if I can really build a Web application that can run on a well, I needed to test my work on a live server. And I did that.. now that's where the issue of not being able to access the default page as the authentication in the Web configuration file had blocked access to the default page. However I can access the default when I right-click on it and view in the browser, but this is only on the local seever. But I'm not talking about local server, it's a live server
Donald Symmons 3,096 Reputation points

2023-04-24T09:09:36.8233333+00:00

Hi , it appears you did not really read my question well enough. If you check my question again, you will get to see that I mentioned "live server", not local server. I don't have any issues in my local server. Infact, in my local server everything is working perfectly. When I run the program in my local server, the Default.aspx is the first page that comes on, so there is no issue there. But this doesn't happen on the live server.
Donald Symmons 3,096 Reputation points

2023-04-24T09:17:19.64+00:00

Hi @QiYou, I think I will have to add this in the Web config before publishing it on to a live server

<defaultDocument enabled="true"> <files> <clear/> <add value="Default.aspx"/> </files> </defaultDocument>

Answer 1

Donald Symmons 3,096

Hi @QiYou-MSFT , I tried that and it did not work. But I was taught another way. This is the code that was put in the Global.asax file, and upon typing the web address and clicking the "enter" button, it redirects to the default page

protected void Application_AuthenticateRequest(Object sender, EventArgs e)
{
    string domainName = HttpContext.Current.Request.Url.GetLeftPart(UriPartial.Authority) + "/";
    if (!Request.IsAuthenticated & Request.Url.ToString() == domainName)
    {
        Response.Redirect("~/default.aspx");
    }
}

0 comments

Answer 2

Bruce (SqlWork.com) 84,071

you are correct, webform authentication via web.config only looks at the request url, and has no knowledge of routing. You will need to add a route paths.

Donald Symmons 3,096 Reputation points

2023-04-21T16:17:57.2366667+00:00

HI @Bruce (SqlWork.com) , Please, how can I do that, and make it such that when I type the Web address, it will redirect to the Default page, instead of login page?
Donald Symmons 3,096 Reputation points

2023-04-22T07:20:55.8933333+00:00
Could it be that I set the default URL to a page that requires authentication? What I mean is, the name of my start page or (default page) is "Default.aspx". Then after login is successful, it redirects to overview.aspx. And in the authentication section of the web.config file, I used overview.aspx as the default URL., see below.

<authentication mode="Forms"> <forms name="login" timeout="40" cookieless="UseCookies" loginUrl="Login.aspx" defaultUrl="overview.aspx" slidingExpiration="true" /> </authentication>

Could I have used Default.aspx instead of overview.aspx? Since Default.aspx is the page that will be seen first (i.e start page).
Donald Symmons 3,096 Reputation points

2023-04-23T16:08:11.9666667+00:00

After I published the test web app, when I type the Web address in the browser address bar, it takes me to login first, why did it not show me the Default page first, is what I don't understand ?

Share via

Login required for Default/home page, even with anonymous access

2 additional answers

Your answer