Đang chuẩn bị liên kết để tải về tài liệu:
Professional ASP.NET 3.5 in C# and Visual Basic Part 108

Professional ASP.NET 3.5 in C# and Visual Basic Part 108. Building on the revolutionary ASP.NET 2.0 release, ASP.NET 3.5 adds several key new developer features including AJAX, LINQ, and a new CSS designer in Visual Web Developer 2008. The dramatic reduction in code that developers realized from the more than 50 new server controls in ASP.NET 2.0 now allows developers the time to make their applications more interactive with AJAX, to work with data in their preferred language with LINQ, and to build visually attractive and consistent standards-based sites with CSS. . | Chapter 21 Security are configured. Highlight .aspx in the list of mappings and click the Edit button. Figure 21-16 shows the result. In the Executable text box you can see that all .aspx pages map to the aspnet_isapi.dll from ASP.NET and that you can also specify which types of requests are allowed in the application. You can allow either all verbs for example get or post or you can specify which verbs are allowed access to the application. One important point regarding these mappings is that you do not see .html .htm .jpg or other file extensions such as .txt in the list. Your application will not be passing requests for these files to ASP .NET. That might not be a big deal but in working through the various security examples in this chapter you might want to have the same type of security measures applied to these files as to .aspx pages. If for instance you want all .html pages to be included in the forms authentication model that you require for your ASP.NET application you must add .html or whatever file extension you want to the list. To do so click the Add button in the Application Configuration dialog. In the next dialog you can add the ASP.NET DLL to the Executable text box and the appropriate file extension and verbs to the list before adding the mapping to your application s mapping table. This example is illustrated in Figure 21-17. Figure 21-17 When dealing with the security of your site you have to remember all the files that might not be included in the default mapping list and add the ones you think should fall under the same security structure. If you are working with Windows Vista you can get to the same functionality through the IIS Manager. In this tool select Handler Mappings in the IIS section. You will find a large list of mappings that have already been provided. This is illustrated in Figure 21-18. By highlighting the .aspx option and pressing the Edit button you see that this extension is mapped to windir Microsoft.NET Framework .