Scott Forsyth's Blog - All Comments

re: Using IP Restrictions with URL Rewrite-Week 25

OWScott — Thu, 09 Feb 2012 20:14:42 GMT

Hi Jeffrey,

There are a couple ways that can probably accomplish this.

One would be to create 2 identical websites and then using a location tag in applicationHost.config and have one that requires auth and one that doesn't. If you use windows auth then it’s applied to apphost already. Forms auth would need to be applied manually. The reason for doing it in apphost is that it can share the rest of the code base including web.config. Then in ARR you would direct users from the trusted IPs to one site and the rest of the users to the non-trusted site.

Another option would be to edit your login page code to watch for certain IP addresses and then automatically log them in with a shared anonymous user. That wouldn't use URL Rewrite but can be achieved with some minor edits to the login code.

re: Using IP Restrictions with URL Rewrite-Week 25

Jeffrey — Thu, 09 Feb 2012 18:47:16 GMT

How could one handle a senario where you might allow access from certain IP addresses and deny from others _unless_ they can login?

For example, if you know a certain IP is good (A work site) and then you have mobile users and you want to prompt them to login if they aren't at work could you use a technique on the second rule that could prompt a login?

re: Flush IIS HTTP and FTP Logs to Disk

Kenny — Mon, 06 Feb 2012 17:10:31 GMT

Very helpful. Thanks for posting.

re: Understanding IIS Bindings

Vinay Kumar Bammidi — Sat, 04 Feb 2012 19:31:23 GMT

Thanks a very useful Information about IIS features and deployment of Website

re: Forms Authentication Timeout

OWScott — Sat, 04 Feb 2012 17:28:47 GMT

Good idea. Thanks James for the code example.

re: Forms Authentication Timeout

James — Fri, 03 Feb 2012 19:37:46 GMT

Another option would be to programmatically set the timeout from the value specified in the web.config:

FormsAuthenticationTicket ticket = new FormsAuthenticationTicket

(

1, // version

txtEmail.Text, // name

DateTime.Now, // issueDate

DateTime.Now.Add(FormsAuthentication.Timeout), // expiration

false, // isPersistent

roles, // userData

FormsAuthentication.FormsCookiePath // cookiePath

);

re: How to find the SiteID in IIS5 and IIS6

Tom — Wed, 01 Feb 2012 21:28:05 GMT

Great, thanks!

re: IIS URL Rewrite – Hosting multiple domains under one site

ukon_myst — Wed, 01 Feb 2012 19:01:05 GMT

Ok, thank you I will try to work it out! Again, a great blog. Thank you!

re: IIS URL Rewrite – Hosting multiple domains under one site

OWScott — Wed, 01 Feb 2012 15:21:46 GMT

Hi ukon_myst,

It sounds like you could use two rules. One for the redirect and one for the rewrite. You will need something unique so that you can tell which situations to redirect and which not to. In my example below I used a start of subdir1/subdir2/subdir3/subdir4 but you could use something more general.

This will redirect from www.subdomain.com (or just subdomain.com) to infrared.subdomain.com (you can pull subdomain.com dynamically with {C:2} if you want).

Then after it does a client-side redirect for the users' sake, you can do a rewrite so that someone hitting the default page will actally be hitting the default page for your infrared site.

</conditions>

</rule>

</conditions>

</rule>

re: IIS URL Rewrite – Hosting multiple domains under one site

ukon_myst — Wed, 01 Feb 2012 14:57:06 GMT

in addition, if the user uses the url http://infrared.ukon_myst.com then it should rewrite/redirect to http://infrared.ukon_myst.com/subdir1/subdir2/subdir3/subdir4/page.aspx

thanks!