Is there any way in the web.config "allow roles" authorization section, to
AND the roles together?
Eg. in my app, i have roles Customer, Employee, and Admininstrator. Now,
there could be Admin employees, and Admin Customers, each with access to

Background: An ASP.NET application, using Basic/SSL authentication with users
residing in an Active Directory in the same domain as the web server, pages
and resources protected with NTFS ACL's and ASP.NET configured for
impersonation works fine.

I have a default.aspx page which has PlaceHolder where it will call
different *.acx file based on the request url.
eg http://localhost/default.aspx?module=home
will put a home.ascx in the place holder

I dont want my code to be reverse-engineered from IL. I want to safeguard my
code. How to implement it. Please suggest me some tips.
Thanks From,

I need help with specifics of using <location> with <authorization>.
I started with
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/cpguide/html/cp
conaspnetauthorization.asp?frame=true
At the bottom of the page, there is a cryptic reference to the "<location>"

I need a List of GroupMember and the Domain where the Members come from.
Because I want to identify the Members from thr trused Domain.
regards
Thauhtopa

I create a account by using the DirectorySerive and it is running:
---------------------------------------------------------
Dim ContainerEntry As DirectoryEntry
       Dim UserEntry As DirectoryEntry

I have disabled "Anonymous Access" & enabled "Integrated Windows
Authentication" on the web server for my ASP.NET application. My Web.config
file has the following entries:
<authentication mode="Windows" />

I have forms authentication for the ASP.NET application I'm currently
writing.  It worked fine until I installed today's patch for Windows XP (we
can't go to SP2 yet for various reasons), VS.NET 2003, .NET Framework 1.1...  
These were all patches that I ran.  Now, my forms ...

We will be using form authentication in out website. We have two totally
different types of users in our site.
Type 1
Has 2 different roles in it

This method has a hande leak.
When submited to a load test the handles rise to 50000 and the application
sends an exception "Insufficient system resources..."
Where can I find someone who could fix this ?

I have a function in my webapp that the user push a button to get a URL to
the page he's on.
The prupose is that the user may store the URL and later paste it in to the
adress field in IE.

If the user is not logged in and no session is present for the user when
requesting a specific page
it seems that the returnurl querystring prarmeter is not set so the page
does not redirect to the right page after login.

 I hope everybody is doing ok.
If I have my .NET web application hosted on a server on the internet, and I
have a Firewall and I have my SQL Server inside the firewall.   What is that
I have to do

I am trying to create a virtual directory using ADSI, with the following
C# code:
string Server = <srv>;
string ApplicationName = <app>;