Securing asp pages with Asp.Net

Sometime around the end of 2002, I was wondering what to do about files other than aspx files that I wanted to secure with Asp.Net. This quickly lead to how to secure classic asp pages. The classic asp pages usually have custom security in place, so it is really a question of how to get that security to get it’s authentication from Asp.Net.

I decided to go with an HttpRequest and produced some proof of concept code. If I ever needed it, I would know how to do it. I took a long time before anyone needed it.

The subject came up again here with Paschal’s Authentication question; someone needed it.

I checked the code, it worked, so I posted it. It proved to be a little difficult to understand.

I created a more complete example with  a solution and an asp.net web application and put it on my free host. http://uitemplates.europe.webmatrixhosting.net/example_zip/GetZipFile.aspx

Paschal like it and posted about it in Secure an ASP 3.0 page with .Net, yes you can ! and there it was, I saw my “name”, AndrewSeven, on the main feed.

The example has asp pages with custom security, the security functions have been changed to request a secured Asp.Net page to check security and to redirect to the asp.net login page if security fails.