|
Home > Archive > Microsoft Content Management Server > October 2006 > URL's in CMS 2002
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
|
| Hi
I posted a question yesterday but I think my message was unclear so I
will try again and hopefully this makes more sense.
We have Anonymous access enabled on our site. We use Forms Auth on the
site outside the firewall and Windows Auth on the Authoring site behind
the firewall.
We have a custom login page for a secure section of the site. Once you
log in you have access to resources linked as attachments to the secure
pages.
When you select an attachment you can see that no URL encryption is
done.
If you send that URL to someone without access to the secure pages,
this person can see the attachment.
Where does our problem lie?
The URL seems to be the same and point straight to the resource, is
this because CMS2002 does not do URL encryption?
Is this also because we have Anonymous access enabled and therefore
every guest sees the same resource URL?
Is there a way to password protect a resource (attachment)?
thanks for all the help so far, sorry for any confusion caused by my
previous post
Regards
M
| |
| Stefan [MSFT] 2006-10-24, 1:15 pm |
| Hi M,
I checked this. I cannot reproduce this.
If I try the same on my box I don't get access using this URL.
Please open a support case for this.
Cheers,
Stefan
--
This posting is provided "AS IS" with no warranties, and confers no rights
"m" <mlking@investec.co.za> wrote in message
news:1161675699.283839.316500@b28g2000cwb.googlegroups.com...
> Hi
>
> I posted a question yesterday but I think my message was unclear so I
> will try again and hopefully this makes more sense.
>
> We have Anonymous access enabled on our site. We use Forms Auth on the
> site outside the firewall and Windows Auth on the Authoring site behind
> the firewall.
> We have a custom login page for a secure section of the site. Once you
> log in you have access to resources linked as attachments to the secure
> pages.
> When you select an attachment you can see that no URL encryption is
> done.
> If you send that URL to someone without access to the secure pages,
> this person can see the attachment.
>
> Where does our problem lie?
> The URL seems to be the same and point straight to the resource, is
> this because CMS2002 does not do URL encryption?
> Is this also because we have Anonymous access enabled and therefore
> every guest sees the same resource URL?
>
> Is there a way to password protect a resource (attachment)?
>
> thanks for all the help so far, sorry for any confusion caused by my
> previous post
> Regards
> M
>
|
|
|
|
|