I have few doubts running though my mind which I want to clear. Here is my scenario
let’s say I want to create a website for library management.
I need to have registration page where I will allow users to register and login.
My doubt is : After login how do I restrict users from accessing only the authorized page ? also I need to make sure that they should not access pages by entering the url directly without authentication ? i don’t want to use the login controls provided in asp.net by default.
forms authentication is the best approach for this.
if you want to protect images from access via url, you need to restrict the access by forms authentication (or you can save them outside the website folder) and then to shem them write to stream via script as requests made by authenticated users.
No. Do research on “secure pages using FormsAuthentication”. You can use the <location> tag in the web.config to secure pages. Then only logged in users will have access to pages
