I am working on a portal that uses the DotNetNuke framework. I would like to know if it's possible to bypass the DotNetNuke security for users. The actual requirement is as follows

The web site using DotNetNuke has been configured to redirect all unauthorized users to the Login page if they try to access an internal page.
But there is a requirement where another application (which does not use DotNetNuke) needs to call in an internal page in the DotNetNuke portal and display the page with relevant information.

I need to be able to allow the users who use that application to be able to directly view the page without being authenticated.

Can it be done?

-- Nagendran Nagarajan

Have you though about using RSS news feed from within DotNetNuke?

I dont think a RSS news feed will help me here.

This is my current scenario.

I have a website called testweb which uses the DotNetNuke Framework. Whenever I want to view an internal page called showMember.aspx in the site, I type http://localhost/testweb/member/tabid/310/showmember.aspx and if I am not already authenticated, the site redirects me to the the Login page.

What I need to be able to do is, when I have the above mentioned link as a Hyperlink in another ASP application (not ASP .NET) and when I click on the link (I am still unauthenticated), I should by-pass the DotNetNuke security and still show the page instead of being redirected to the Login page.

Thanks.

Hi, have you thought about creating a page for the content you want the external application to access, and mark it as available to the public ?

The trick would then to be to make that page invisible off the main menu.

As I was recently reminded, there is a Page property labelled 'Hidden', which, when checked, removes the page from the menu, but still makes the URL available.

Yes, this represents yet another 'security by obscurity' solution - so don't do this if the information is of sensitive or personal nature.

Thx,
Steven.

You need to use the physical path for the file showmember.aspx, probably something like http://localhost/desktopmodules/yourmodule/showmember.aspx.

Nik

 

If I have links in the showmember.aspx page that allows me to navigate to other pages within the site, will this solution have any impact on that?

I am not sure it's a solution...it's just the standard URL to the page, not unlike any web page on any web server. If you have links to other pages then the result entirely depends on the access restrictions on those pages and has nothing to do with the source page (i.e. your aspx page).

Nik
  

It might sound like a useless question, but I'm going to ask it anyway,..
What is the permission of the showmember page ?
I think if you set it to Un Authenticated users, you can display it  using iframe from another application without  any problems.
My guess is that you set it into somthing like Registered users or other roles that requires the users to log in first.
CMIIW.

Dhany