Jan 03, 2019 10:32 AM|kapaul|LINK
I want to secure my simple Intranet application (now only windows authentication).
Every user of our domain can see the complete content.
For the future we have to make different access rights.
We have 3 companies, for each company we have a separate subdirectory with sensible content
Since I know the windows username, I can lookup in a sql table which companies he is allow to view (e.g. comp2 and comp3)
How can I protect the directories the user is not allowed to? Please help !
Should I work with multipe web.configs? Or location-Tags in the root web.config? Working with roles etc.
I habe no idea to find a practicable solution ..