https://bugzilla.novell.com/show_bug.cgi?id=467221
User [email protected] added comment https://bugzilla.novell.com/show_bug.cgi?id=467221#c3 Mike Morano <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |REOPENED Resolution|FIXED | --- Comment #3 from Mike Morano <[email protected]> 2009-03-13 09:01:43 MST --- I still seem to be having an issue with this. I have found a bit more information that may be useful to help track this further: It seems like the <location> element in the root web.config is not being honored when determining the set of SiteMapNodes to be returned when securityTrimming is enabled. I have just tried another test, where I add a web.config to the admin directory, to contain the authorization rule. This admin/web.config file looks like the following: <configuration> <system.web> <authorization> <allow roles="friend" /> <deny users="*" /> </authorization> </system.web> </configuration> With this configured, the node is properly removed from the resulting set of SiteMapNodes, and hence, is not displayed in the navigation (which is driven off the default site map provider with security trimming enabled). However, if I remove the admin/web.config, the node is not removed, and the navigation link to the admin link is presented. The good news is, now the page is truly not accessible - I am getting denied access when actually trying to access the admin page, which is great. However, the site map node is not properly getting trimmed as it is configured. Thanks again for all your help, Mike -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the QA contact for the bug. _______________________________________________ mono-bugs maillist - [email protected] http://lists.ximian.com/mailman/listinfo/mono-bugs
