1

For some reasons, sometimes may occurr that some .aspx files could appear in /Uploads/Photo/Avatar folder, and I want to restrict access to deny execution .aspx or any other scripts inside this folder.

Anyway, files like .jpg .gif and other should be accessed (but not executed) by IIS. What is the best way to configure web.config, or maybe setup Routes in global.asax

Please consider, that the standart forms authentication is not used (there is no roles)

project is using: MVC3 IIS7 ASP.NET

Scott Rippey
  • 15,614
  • 5
  • 70
  • 85
Alexei
  • 1,289
  • 3
  • 19
  • 34

1 Answers1

0

you can use the location tag, but that does not support wild card mapping. you will find this answer helpful.

Can I use wildcards in the web.config location path attribute?

Community
  • 1
  • 1
Adeel
  • 19,075
  • 4
  • 46
  • 60