Asp.net 如何将页面访问权限限制为仅本地主机?
asp.net中是否有方法限制仅从本地主机访问网页?这可能是一种解决方案:Asp.net 如何将页面访问权限限制为仅本地主机?,asp.net,security,localhost,Asp.net,Security,Localhost,asp.net中是否有方法限制仅从本地主机访问网页?这可能是一种解决方案: protected void Page_Load(object sender, EventArgs e) { string localhost = Request.Url.Authority; if (localhost.IndexOf("localhost") != 0) Response.Redirect("defalut.aspx"); } 如果您想为“网页”执行此操作,那么我将使
protected void Page_Load(object sender, EventArgs e)
{
string localhost = Request.Url.Authority;
if (localhost.IndexOf("localhost") != 0)
Response.Redirect("defalut.aspx");
}
如果您想为“网页”执行此操作,那么我将使用IsLocal,但如果您想要子目录解决方案,我将使用Url重写2。如果你还没有安装这个,那就去买吧,因为它非常有用。我相信这将是IIS8的标准配置 然后将其添加到您的web.config中的
@HttpRequest.IsLocal<rewrite>
<rules>
<!-- if this rule matches stopProcessing any further rules -->
<rule name="Block Remote Access to Admin" stopProcessing="true" patternSyntax="ECMAScript" enabled="true">
<!-- specify secure folder matching trailing / or $ == end of string-->
<match url="projects(/|$)" ignoreCase="true" />
<conditions logicalGrouping="MatchAll">
<!-- Allow local host -->
<add input="{REMOTE_ADDR}" pattern="localhost" ignoreCase="true" negate="true" />
<add input="{REMOTE_ADDR}" pattern="127.0.0.1" negate="true" />
<add input="{REMOTE_ADDR}" pattern="::1" negate="true" />
</conditions>
<!-- by default, deny all requests. Options here are "AbortRequest" (drop connection), "Redirect" to a 403 page, "CustomResponse", etc. -->
<action type="CustomResponse" statusCode="403" statusDescription="Forbidden" statusReason="Access to this URL is restricted"/>
<!-- or send the caller to an error page, home page etc
<action type="Redirect" url="/public/forbidden.htm" redirectType="Temporary" />
-->
</rule>
</rules>
</rewrite>
if (!HttpContext.Current.Request.IsLocal)
{
Response.Status = "403 Forbidden";
Response.End();
}