29 Aug 2008
29 Jul 2010
Link to this post
I have a section named 'account', which is set to deny anonymous access. This works fine for all pages under this folder. I've added an external page that emulated the same folder structure ( ~/account/licenses/order.aspx) and added it to the sitefinity folder ~/account/licenses from the control panel. The security settings are disabled for this external page from within sitefinity, but the radio button 'deny' is checked under allow anonymous access.
The problem is that i can still access this page even when i'm not logged in. Is there a way that the external page can inherit sitefinity's security settings? Or do i have to add a web.config file under that folder and specify the security settings myself.
Later edit: I've now noticed that the path of the file is not correct, although both its physical location and the virtual location inside sitefinity are ~/account/licenses/order.aspx, and the file is accessed from the same link, the menu to the left of the page shows the structure as seen from the root of the page.