Mar 31, 2015 08:48 AM|SheldonS|LINK
Deny anonymous users from either of those three folders, redirecting to the login page.
For this you could put a Web.Config in each directory to deny anon users. Something like this;
<deny users="?" />
After logging in in, it takes you to correct page associated with your account rather than back to where you was redirected from.
For myself I would create another method to run after the user successfully logs in which would do a response.redirect.
Change the login link at the top of the page to "Log out <username>". Note, this is in the parent master page
I have done something like this using a helper method to output the HTML or by using a partial view in MVC. I'm sure you get the idea though.