Within a web application, I have secured folder/aspx pages using the
location tag in web.config.
Now whenever an unauthorized user tries to access that page, a popup dialog
is displayed - which i dont want.

How are HttpConext.Current.User and Thread.CurrentPrincipal different?
It seems that they can be set differently in different places.  Why would
one use one and not the other?
Thanks,

I have an ASP.Net portal application which requires a user to login.
The user has a CompanyId associated with their profile in the
database. Once they successfully login, I want to store the CompanyId
for that user somewhere for later reference.

We are trying to limit access for an intranet application to certain people
based on AD groups they belong to.
When we add a key to <allow roles="domain\group" /> it doesn?t work but it
works with explicit users as <allow user="domain\loginid" />

I encounter error when using System.Web.Mail for sending
mail in an ASP.NET app. In WinForm app, all's well and no
problem at all. I already tried impersonating my domain
account in my ASP.NET app but still no success. Here's the

I am a complete newbie and am contemplating moving to asp.net from asp. How
protected is an asp.net web site source code should it be delivered to a
client?
Thanks

I am accessing a COM component using C#. When i access it through the
standalone c# application it works fine.But when i call it using ASP .net
application its not working .
For example

We have various sectors in our organisation arguing over
the virtues of Apache over IIS, the primary argument is
that IIS is insecure out of the box.
Q's:

Hi Gurus,
I can instantiate a COM object in VC# without any problem.
But when i call one function exported by the COM object i
get this exception.

I have an asp.net app with one sub folder that requires windows
authentication. The IIS folder is set to require intergrated security and
the sub folder has its own web.config
with the following setting.

after extensive research of this topic, I'm still not sure what is
"official" way to do it.
Task:
   1. User submits some request to ASP.NET application and the app should

How can I simulate the usage of web.config in classic asp ?
Can any one help with this ?
thanks in advance,
Nuno

I am using forms authentication for a web application I am writing. I query
a SQL server database to find a matching username and password then create
an encrypted cookie. I then redirect to my main menu page. However, when I
select a menu and try to jump to another page, it keeps ...

I'm getting the following error exception when using the code below.
I've seen a number of people post the same problem. Many of the solutions
say to use impersonate=true in web.config, or update machine.config to
specify the username and password in the processmodel element, or to ...

I want to store a database connection (includes username & password) for my
asp.net app, currently I have it stored in the web.config file - I know this
is not ideal but can anyone suggest a better place or way to store it.
Cheers