匿名访问应用程序页面 [英] Anonymous access to Application pages
问题描述
嗨!
我有一个运行Windows身份验证的MOSS 2007 + CS 2009网站,身份模拟设置为true。 此站点还扩展到运行时将表单身份验证和身份模拟设置为false的公共站点。对整个站点启用匿名访问,身份验证提供程序为 UpmMembershipProvider 。
在加载位于12 / _layouts / myfolder / * .aspx中的自定义应用程序页面时出现问题。这些文件必须可以被签名和匿名用户访问,但每次我尝试访问这些页面时,我都会从Commerce Server获得登录屏幕。自定义应用程序页面继承类Microsoft.SharePoint.WebControls.UnsecuredLayoutsPageBase。即使代码隐藏文件不包含任何自定义代码且aspx文件不包含任何内联代码,也会显示登录页面。未使用母版页。如果我创建.aspx–仅包含标记HTML(不带代码隐藏)的文件,则登录页面不会显示。
I have a MOSS 2007 + CS 2009 web site running with windows authentication with identity impersonation set to true. This site is also extended to public site running with forms authentication and identity impersonation set to false. Anonymous access is enabled to entire site and authentication provider is UpmMembershipProvider.
I have a problem when loading custom application pages located in 12/_layouts/myfolder/*.aspx. Those files must be accessible both signed and anonymous users but I got login screen from the Commerce Server every time I try to access these pages. Custom application pages are inheriting class Microsoft.SharePoint.WebControls.UnsecuredLayoutsPageBase. Login page appears even if the codebehind file do not contain any custom code and aspx file do not contain any inline code. Master page is not used. If I create .aspx –file which contains only markup HTML (without codebehind) the login page don’t appear.
任何想法如何是否允许匿名访问我的自定义应用程序页面?我们使用的是带有SP2的Windows Server 2008 Enterprise 32位。
-Antti
Any ideas how to enable anonymous access to my custom application pages? We are using Windows Server 2008 Enterprise 32bit with SP2 .
-Antti
推荐答案
如果您的代码库是基于的在可扩展性工具包上,您必须查看会话模块中的识别用户方法以及每个http请求上加载的所有Http模块。
if your codebase is based on the Extensibility toolkit you have to review the recognize user method in the Session Module and all the Http module that are loaded on each http request.
我在识别用户方法中遇到了类似的问题,它没有进行一些一致性检查以防止cookie被篡改,而且SignOut用户
I got a similiar issue in the recognize user method, it was failing some coherency check to prevent cookies tampering and it SignOut the user
因此我建议在这些类中进行深度调试,可能你会找到它的原因...
so I would suggest a deep debug in those classes and probably you will find the reason of it...
Stelio
这篇关于匿名访问应用程序页面的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
