0

i have this line in my Web.Config
<add key="localhost2" value="http:\0.0.0.0\export\" />
in vb Code:
<a href='" & ConfigurationSettings.AppSettings("localhost2") & TransactionNo & "\" & fi.Name & "' target='_blank' >" & fi.Name & "</a>"
the Publish URL :
http://0.0.0.0/export/803/SingleResult.pdf
How i can encrypt the 803 value or prevent the user from change the value in address bar?

3
Contributors
3
Replies
21
Views
8 Months
Discussion Span
Last Post by HibaPro
1

I think your best bet is to add uthentication to each directory that user might use. This way even if they change the url they won't be authorized to enter that directory.

0

Max security is authentication at the resulting url or at least use the same function that provides available transaction numbers for that user;

Medium security would be to use an obfuscated value such as a GUID rather than a transaction number. This would probably mean adding another field to your db.

A more cumbersome solution would be to render the detail inline - returning your complete dataset - which would mean that the url would never change.

0

i added authentication make user just to read from the directory , but still can open the file

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.