Hello, I have a problem with the security on my website. There is a folder containing documentation (doc and pdf files) which only logged-in users can access.
It's working correctly in development environment (with the virtual server provided by Visual Studio 2005) but when my website is running on IIS, security does not take effect for documentation folder (but yes for the rest). That's to say, when I write the url of a document on the browser, it's opened properly, though i'm not logged-in.
I have read on a develpment site that security just work for aspx pages but not for asp, html or other type of documents, but I'm no sure fo that. Can anybody help me
Here is the security code on my web.config file:
<deny users=" "/>