HTTP_FILTER_ACCESS_DENIED Structure

IIS includes a pointer to this structure when a user is presented with an Access Denied error message. If your filter should be notified for this event, it should register for the SF_NOTIFY_ACCESS_DENIED event.

typedef struct _HTTP_FILTER_ACCESS_DENIED HTTP_FILTER_ACCESS_DENIED {
      const CHAR * pszURL;
      const CHAR * pszPhysicalPath;
      DWORD dwReason;
} HTTP_FILTER_ACCESS_DENIED, * PHTTP_FILTER_ACCESS_DENIED;

Members

• pszURL
  Points to a null-terminated string that specifies the URL that requested access to the resource.

• pszPhysicalPath
  The physical path of the resource that was requested.

• dwReason
  A DWORD containing flags that indicate the reasons for the denial. Can be one of the following values.

  Value	Meaning
  SF_DENIED_LOGON	The client could not be logged on.
  SF_DENIED_RESOURCE	A Windows DACL denied the resource.
  SF_DENIED_FILTER	An ISAPI filter denied the request.
  SF_DENIED_APPLICATION	An ISAPI extension or CGI application denied the request.
  SF_DENIED_BY_CONFIG	The server configuration denied the request. For example, disabling anonymous requests on the server would generate this filter notification when a user without credentials tried to make a request to the server.

Remarks

This structure indicates that the server has denied access to the requested resource. The structure is generated when there has been a logon failure, or if a user requests a resource that has an associated discretionary access control list that does not include the logged-on user.

The server will automatically include the supported authentication schemes when an ISAPI extension, filter, or CGI script returns a 401 Access Denied error code.

Requirements

Client: Requires Windows XP Professional, Windows 2000 Professional, or Windows NT Workstation 4.0.

Server: Requires Windows Server 2003, Windows 2000 Server, or Windows NT Server 4.0.

Product: IIS

Header: Declared in httpfilt.h.