I'm thinking of posting the Help docs produced by HTML Help Builder on my site but I want to restrict access to authorized users. I'm using Custom Authentication to secure Process methods but I don't know how to secure a folder.
How can this be done?

Thanks, Carl

The easiest thing is via Windows Authentication. Just remove the IUSR_ from the access control list (Properties | Security) for the folder, at which point your will be prompted for credentials when you try to access the folder.

Make sure you enable Windows Authentication for either that folder or your application's site/virtual.

Alternately you can also use ASP.NET security by using the <Location> tag and using FormsAuthentication with user credentials stored in the config file.

Here's a really old article that shows how you can do that. It'll take a little work, but the nice thing is once you have this you can easily secure other resources using the same approach.

• https://weblogs.asp.net/gurusarkar/setting-authorization-rules-for-a-particular-page-or-folder-in-web-config

+++ Rick ---

Thanks, Rick.