More in this section

Forums / Developing with Sitefinity / Localisation / Directory Security Issue

Localisation / Directory Security Issue

2 posts, 0 answered
  1. Shaun Mitchem
    Shaun Mitchem avatar
    12 posts
    Registered:
    05 Aug 2003
    16 Nov 2009
    Link to this post
    I have a sitefinity site localisation enabled - i.e.

    http://www.site.com/page.aspx

    by default redirects to:

    http://www.site.com/en/page.aspx

    However, i have a directory on the site that isnt part of the Sitefinity site that requires basic password authentication to get into.

    If i access it with the URL:

    http://www.site.com/SecureDirectory

    the basic authentication username and password box pops up just as it should do. Howeve, if i access that directory using the URL:

    http://www.site.com/en/SecureDirectory

    it lets me straight in without prompting for my login details.

    I can see why it is doing this but is there any way to avoid this happending, as it obviously isnt very secure!

    Thanks

    Shaun
  2. Ivan Dimitrov
    Ivan Dimitrov avatar
    16072 posts
    Registered:
    12 Sep 2017
    20 Nov 2009
    Link to this post
    Hello Shaun Mitchem,

    We tried to reproduce the problem with IIS7 and II6 as well with no avail using Sitefinity 3.7 SP1. Could you tell us

    - which version of Sitefinity you use
    - Which version of Windows you use
    - Which version of IIS you use.
    - How IIS permissions are set ( if you can provide us with a screenshot it will be great).

    Temporarily solution could be using QueryString as persistenceMode - the language is appended as a QueryString.

    I look forward to hearing from you at your earliest convenience.

    Best wishes,
    Ivan Dimitrov
    the Telerik team

    Instantly find answers to your questions on the new Telerik Support Portal.
    Watch a video on how to optimize your support resource searches and check out more tips on the blogs.
2 posts, 0 answered