web.config

DocFlow展示了使用.NET开发平台结合Microsoft SQL Server数据库和Microsoft Indexing Service索引服务同样也能创建功能强大的文档管理门户。 Do

<?xml version="1.0"?>
<configuration>
	<appSettings>
		<add key="ConnectionString" value="Provider=SQLOLEDB;server=127.0.0.1;database=AccuFlow;User Id=sa;pwd=111111"/>
		<add key="IndexingServiceStorageDir" value="D:\AccuFlowDev\Redistr\AccuFlow\Data\Files"/>
		<add key="OriginalStorageDir" value="D:\AccuFlowDev\Redistr\AccuFlow\Data\OriginalFiles"/>
	</appSettings>
	<system.web>
		<!--  DYNAMIC DEBUG COMPILATION
          Set compilation debug="true" to enable ASPX debugging.  Otherwise, setting this value to
          false will improve runtime performance of this application. 
          Set compilation debug="true" to insert debugging symbols (.pdb information)
          into the compiled page. Because this creates a larger file that executes
          more slowly, you should set this value to true only when debugging and to
          false at all other times. For more information, refer to the documentation about
          debugging ASP .NET files.
    -->
		<compilation defaultLanguage="c#" debug="true"/>
		<!--  CUSTOM ERROR MESSAGES
          Set customError mode values to control the display of user-friendly 
          error messages to users instead of error details (including a stack trace):

          "On" Always display custom (friendly) messages  
          "Off" Always display detailed ASP.NET error information.
          "RemoteOnly" Display custom (friendly) messages only to users not running 
          on the local Web server. This setting is recommended for security purposes, so 
          that you do not display application detail information to remote clients.
    -->
		<!-- customErrors 
    mode="RemoteOnly" 
    / -->
		<customErrors defaultRedirect="~/Error.aspx" mode="Off">
			<error statusCode="401" redirect="~/RegisterUser.aspx"/>
		</customErrors>
		<!--  AUTHENTICATION 
          This section sets the authentication policies of the application. Possible modes are "Windows", "Forms", 
          "Passport" and "None"
    -->
		<!-- authentication mode="Windows" / -->
		<authentication mode="Forms">
			<forms name="AccuFlowAuth" loginUrl="~/Login.aspx"/>
		</authentication>
		<authorization>
			<deny users="?"/>
			<!-- allow roles="R" / -->
		</authorization>
		<!--  APPLICATION-LEVEL TRACE LOGGING
          Application-level tracing enables trace log output for every page within an application. 
          Set trace enabled="true" to enable application trace logging.  If pageOutput="true", the
          trace information will be displayed at the bottom of each page.  Otherwise, you can view the 
          application trace log by browsing the "trace.axd" page from your web application
          root. 
    -->
		<trace enabled="false" requestLimit="10" pageOutput="false" traceMode="SortByTime" localOnly="true"/>
		<!--  SESSION STATE SETTINGS
          By default ASP .NET uses cookies to identify which requests belong to a particular session. 
          If cookies are not available, a session can be tracked by adding a session identifier to the URL. 
          To disable cookies, set sessionState cookieless="true".
    -->
		<sessionState mode="InProc" stateConnectionString="tcpip=127.0.0.1:42424" sqlConnectionString="data source=127.0.0.1;user id=sa;password=" cookieless="false" timeout="20"/>
		<!--  GLOBALIZATION
          This section sets the globalization settings of the application. 
    -->
		<globalization requestEncoding="utf-8" responseEncoding="utf-8"/>
		<xhtmlConformance mode="Legacy"/>
  </system.web>
  
  
  
  
	<location path="Home">
		<system.web>
			<authorization>
				<allow roles="R"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="idq">
		<system.web>
			<authorization>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="Search">
		<system.web>
			<authorization>
				<allow roles="R"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="Documents">
		<system.web>
			<authorization>
				<allow roles="R"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="DocEdit">
		<system.web>
			<authorization>
				<allow roles="O"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="Dictionaries">
		<system.web>
			<authorization>
				<allow roles="A"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
	<location path="Security">
		<system.web>
			<authorization>
				<allow roles="A"/>
				<deny users="*"/>
			</authorization>
		</system.web>
	</location>
</configuration>