Difference between revisions of "Web.config Edits"
From KOP KB
(→Subdomain redirects) |
(→SSL PROXY) |
||
| Line 52: | Line 52: | ||
</configuration> | </configuration> | ||
</syntaxhighlight> | </syntaxhighlight> | ||
| + | |||
| + | Please note that "healthcheck.html" is not an example parameter. This is a necessary file call to ensure this Web.config does not overwrite system-sensitive configurations. | ||
== Connection Strings and Config Source == | == Connection Strings and Config Source == | ||
Latest revision as of 23:28, 26 September 2017
You may need to only copy some parts as the may have a web.config file already created
Contents
- 1 Web.config SSL Redirect
- 2 Connection Strings and Config Source
- 3 IP address block
- 4 Host to Virtual Path
- 5 Password protected file or directories
- 6 Standard Wordpress URL Rewrite
- 7 ColdFusion Handlers
- 8 Default Document
- 9 Redirect a specific folder
- 10 Redirecting a specific file
- 11 Blocking
- 12 NON WWW to WWW
- 13 Disabling request validation
Web.config SSL Redirect
This is the way to redirect for ssl, first to www then to https
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="Redirect domain.com to www" patternSyntax="Wildcard" stopProcessing="true">
<match url="*" />
<conditions>
<add input="{HTTP_HOST}" pattern="domain.com" />
</conditions>
<action type="Redirect" url="http://www.domain.com/{R:0}" />
</rule>
<rule name="HTTP to HTTPS redirect" stopProcessing="true">
<match url="(.*)" />
<conditions>
<add input="{HTTPS}" pattern="off" ignoreCase="true" />
</conditions>
<action type="Redirect" redirectType="Found" url="https://{HTTP_HOST}/{R:1}" />
</rule>
</rules>
</rewrite>
</system.webServer>
</configuration>
SSL PROXY
<?xml version="1.0" encoding="utf-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="Force Https" stopProcessing="true">
<match url="healthcheck.html" negate="true" />
<conditions>
<add input="{HTTP_X_FORWARDED_PROTO}" pattern="https" negate="true" />
</conditions>
<action type="Redirect" url="https://{HTTP_HOST}{REQUEST_URI}" redirectType="Permanent" />
</rule>
</rules>
</rewrite>
</system.webServer>
</configuration>
Please note that "healthcheck.html" is not an example parameter. This is a necessary file call to ensure this Web.config does not overwrite system-sensitive configurations.
Connection Strings and Config Source
Well below is good example of how you can do data strings for your asp.net application. Also you will notice one has a configSource so for every tag in a web.config you can provide an alternate source for the rest of that configuration. So your data strings you see there for connection we could of stored all of them in a separate file.
<?xml version="1.0" encoding="UTF-8"?>
<!--
For more information on how to configure your ASP.NET application, please visit
http://go.microsoft.com/fwlink/?LinkId=169433
-->
<configuration>
<connectionStrings>
<!--
This is the connection string where your only changing data source, initial catalog, User ID, Password
-->
<add name="51134_testConnectionString" connectionString="Data Source=hostname;Initial Catalog=dbname;Persist Security Info=True;User ID=userid;Password=Simongtest123"
providerName="System.Data.SqlClient" />
<add name="51134_testConnectionString2" connectionString="Data Source=hostname;Initial Catalog=dbname;Persist Security Info=True;User ID=simongtest123;Password=Simongtest123"
providerName="System.Data.SqlClient" />
</connectionStrings>
<connectionStrings configSource="ConnectionStrings.config" />
<!--
It may be system.web or system.webserver depending on the server of windows your using.
-->
<system.web>
<!--
This is best to be off so you can see very specific errors to provide to admins
Http Error mode is best left on detailed for troubleshooting. Do this in IIS as it appears windows is not fond of this being added manually.
-->
<customErrors mode="Off"/>
<!--
Below is a way you can reference another config file to split up your configs
You can do this for organization or if there is a web.config file size limit
-->
<profile configSource="profile.config" />
</system.web>
</configuration>
IP address block
Below is the way you can either set to true to block the listed IP addresses or to false to only let them in.
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<security>
<ipSecurity allowUnlisted="true"> <!-- this line blocks everybody, except those listed below -->
<clear/> <!-- removes all upstream restrictions -->
<add ipAddress="83.116.19.53"/> <!-- block one IP -->
<add ipAddress="83.116.119.0" subnetMask="255.255.255.0"/> <!--block network 83.116.119.0 to 83.116.119.255-->
</ipSecurity>
</security>
<modules runAllManagedModulesForAllRequests="true"/>
</system.webServer>
</configuration>
Host to Virtual Path
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="*.domain.com_Rule1" patternSyntax="ECMAScript" stopProcessing="true">
<match url=".*" />
<conditions>
<add input="{HTTP_HOST}" pattern="^(?:[a-zA-Z0-9-]+\.)?domain.com$" />
</conditions>
<action type="Rewrite" url="/foldername/{R:0}" appendQueryString="true" />
</rule>
</rules>
</rewrite>
<defaultDocument>
<files>
<clear />
<add value="Company.aspx" />
<add value="index.asp" />
</files>
</defaultDocument>
</system.webServer>
</configuration>
Password protected file or directories
Below is the way you can either set to true to block the listed IP addresses or to false to only let them in.
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<location path="filenameordirectory">
<system.webServer>
<security>
<authorization>
<add accessType="Deny" users="?" />
</authorization>
</security>
</system.webServer>
</location>
</configuration>
Standard Wordpress URL Rewrite
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="Main Rule" stopProcessing="true">
<match url=".*" />
<conditions logicalGrouping="MatchAll">
<add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
<add input="{REQUEST_FILENAME}" matchType="IsDirectory" negate="true" />
</conditions>
<action type="Rewrite" url="index.php/{R:0}" />
</rule>
</rules>
</rewrite>
</system.webServer>
</configuration>
Virtual Host Rewrite
Thanks to some help with Mike
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rule platformId="wdpVpr" name="www.domain1.com virtual path rewrite" stopProcessing="false">
<match url="^.*$" ignoreCase="false" />
<conditions>
<add input="{HTTP_HOST}" pattern="^www\.domain1\.com$" />
</conditions>
<action type="Rewrite" url="/folderpath/{R:0}" appendQueryString="true" />
</rule>
<rule platformId="wdpVpr" name="domain1.com virtual path rewrite" stopProcessing="false">
<match url="^.*$" ignoreCase="false" />
<conditions>
<add input="{HTTP_HOST}" pattern="^domain1\.com$" />
</conditions>
<action type="Rewrite" url="/folderpath/{R:0}" appendQueryString="true" />
</rule>
<rule platformId="wdpVpr" name="www.domain2.com virtual path rewrite" stopProcessing="false">
<match url="^.*$" ignoreCase="false" />
<conditions>
<add input="{HTTP_HOST}" pattern="^www\.domain2\.com$" />
</conditions>
<action type="Rewrite" url="/folderpath2/{R:0}" appendQueryString="true" />
</rule>
<rule platformId="wdpVpr" name="domain2.com virtual path rewrite" stopProcessing="false">
<match url="^.*$" ignoreCase="false" />
<conditions>
<add input="{HTTP_HOST}" pattern="^domain2\.com$" />
</conditions>
<action type="Rewrite" url="/folderpath2/{R:0}" appendQueryString="true" />
</rule>
<rule name="wordpress parent domain1.com">
<match url=".*" />
<conditions>
<add input="{HTTP_HOST}" pattern="^domain1\.com$" />
<add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
<add input="{REQUEST_FILENAME}" matchType="IsDirectory" negate="true" />
</conditions>
<action type="Rewrite" url="/folderpath/index.php" />
</rule>
<rule name="wordpress parent domain2.com">
<match url=".*" />
<conditions>
<add input="{HTTP_HOST}" pattern="^domain2\.com$" />
<add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
<add input="{REQUEST_FILENAME}" matchType="IsDirectory" negate="true" />
</conditions>
<action type="Rewrite" url="/folderpath2/index.php" />
</rule>
</system.webServer>
</configuration>
ColdFusion Handlers
The system.data is for cshtml files
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.data>
<DbProviderFactories>
<remove invariant="System.Data.SqlServerCe.4.0" />
<add invariant="System.Data.SqlServerCe.4.0" name="Microsoft® SQL Server® Compact 4.0" description=".NET Framework Data Provider for Microsoft SQL Server Compact" type="System.Data.SqlServerCe.SqlCeProviderFactory, System.Data.SqlServerCe, Version=4.0.0.0, Culture=neutral, PublicKeyToken=89845dcd8080cc91" />
</DbProviderFactories>
</system.data>
<system.webServer>
<handlers accessPolicy="Read, Execute, Script">
<add name="hbmxmlHandler" path="*.hbmxml" verb="*" modules="IsapiModule" scriptProcessor="C:\cfm_connector\wsconfig\1\isapi_redirect.dll" resourceType="Unspecified" preCondition="bitness32" />
<add name="cfswfHandler" path="*.cfswf" verb="*" modules="IsapiModule" scriptProcessor="C:\cfm_connector\wsconfig\1\isapi_redirect.dll" resourceType="Unspecified" preCondition="bitness32" />
<add name="cfrHandler" path="*.cfr" verb="*" modules="IsapiModule" scriptProcessor="C:\cfm_connector\wsconfig\1\isapi_redirect.dll" resourceType="Unspecified" preCondition="bitness32" />
<add name="cfmlHandler" path="*.cfml" verb="*" modules="IsapiModule" scriptProcessor="C:\cfm_connector\wsconfig\1\isapi_redirect.dll" resourceType="Unspecified" preCondition="bitness32" />
<add name="cfmHandler" path="*.cfm" verb="*" modules="IsapiModule" scriptProcessor="C:\cfm_connector\wsconfig\1\isapi_redirect.dll" resourceType="Unspecified" preCondition="bitness32" />
<add name="cfcHandler" path="*.cfc" verb="*" modules="IsapiModule" scriptProcessor="C:\cfm_connector\wsconfig\1\isapi_redirect.dll" resourceType="Unspecified" preCondition="bitness32" />
</handlers>
<defaultDocument>
<files>
<add value="index.cfm" />
<add value="default.cfm" />
</files>
</defaultDocument>
</system.webServer>
<system.web>
<compilation debug="true" />
<customErrors mode="Off" />
</system.web>
</configuration>
Default Document
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<defaultDocument>
<files>
<clear />
<add value="Company.aspx" />
<add value="index.asp" />
</files>
</defaultDocument>
</system.webServer>
</configuration>
Redirect a specific folder
You would put this directly in the folder you want redirected.
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<httpRedirect enabled="true" destination="http://www.domain.net" httpResponseStatus="Permanent" />
</system.webServer>
</configuration>
Redirecting a specific file
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<location path="services.htm">
<system.webServer>
<httpRedirect enabled="true" destination="http://domain.com/services" httpResponseStatus="Permanent" />
</system.webServer>
</location>
<location path="products.htm">
<system.webServer>
<httpRedirect enabled="true" destination="http://domain.com/products" httpResponseStatus="Permanent" />
</system.webServer>
</location>
</configuration>
If you require a trailing slash for the redirect you need to use rewrites like so
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="redirect1" stopProcessing="true">
<match url="^file1.htm$" />
<action type="Redirect" url="http://www.domain.com" />
</rule>
<rule name="redirect2" stopProcessing="true">
<match url="^file2.html$" />
<action type="Redirect" url="http://www.domain.com/someother/path/" />
</rule>
<rule name="redirect3" stopProcessing="true">
<match url="^file3.html$" />
<action type="Redirect" url="http://www.domain.com/someother/path/" />
</rule>
<rule name="redirect4" stopProcessing="true">
<match url="^file4.html$" />
<action type="Redirect" url="http://www.domain.com/someother/path/" />
</rule>
<rule name="redirect5" stopProcessing="true">
<match url="^file5.html$" />
<action type="Redirect" url="http://www.domain.com/someother/path/" />
</rule>
<rule name="redirect6" stopProcessing="true">
<match url="^file6.html$" />
<action type="Redirect" url="http://www.domain.com/somepath/" />
</rule>
<rule name="redirect7" stopProcessing="true">
<match url="^file7.html$" />
<action type="Redirect" url="http://www.someother domain.com" />
</rule>
<rule name="redirect8" stopProcessing="true">
<match url="^file8.html$" />
<action type="Redirect" url="http://www.domain.com/somepath8/" />
</rule>
</rules>
</rewrite>
</system.webServer>
</configuration>
Blocking
<?xml version="1.0"?>
<configuration>
<system.webServer>
<security>
<ipSecurity allowUnlisted="false"> <!-- this line blocks everybody, except those listed below -->
<clear/> <!-- removes all upstream restrictions -->
<add ipAddress="127.0.0.1" allowed="true"/> <!-- allow requests from the local machine -->
<add ipAddress="83.116.19.53" allowed="true"/> <!-- allow the specific IP of 83.116.19.53 -->
<add ipAddress="83.116.119.0" subnetMask="255.255.255.0" allowed="true"/> <!--allow network 83.116.119.0 to 83.116.119.255-->
<add ipAddress="83.116.0.0" subnetMask="255.255.0.0" allowed="true"/> <!--allow network 83.116.0.0 to 83.116.255.255-->
<add ipAddress="83.0.0.0" subnetMask="255.0.0.0" allowed="true"/> <!--allow entire /8 network of 83.0.0.0 to 83.255.255.255-->
</ipSecurity>
</security>
<modules runAllManagedModulesForAllRequests="true"/>
</system.webServer>
</configuration>
SOURCE: http://www.stokia.com/support/misc/web-config-ip-address-restriction.aspx
NON WWW to WWW
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="Redirect to non-www" stopProcessing="true">
<match url="(.*)" negate="false"></match>
<action type="Redirect" url="http://domain.com/{R:1}"></action>
<conditions>
<add input="{HTTP_HOST}" pattern="^domain\.com$" negate="true"></add>
</conditions>
</rule>
</rules>
</rewrite>
</system.webServer>
</configuration>
SOURCE: http://egeek.dk/redirect-www-to-non-www-iis/
Subdomain redirects
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.webServer>
<rewrite>
<rules>
<rule name="Subdomain redirect 1" enabled="true">
<match url="(.*)" ignoreCase="true" />
<conditions logicalGrouping="MatchAll">
<add input="{HTTP_HOST}" pattern="^(www\.)?subdomain\.domain\.com$" ignoreCase="false" />
</conditions>
<action type="Redirect" url="https://domain2.com/fileorfolderpath" redirectType="Permanent" />
</rule>
<rule name="Subdomain redirect 2" enabled="true">
<match url="(.*)" ignoreCase="true" />
<conditions logicalGrouping="MatchAll">
<add input="{HTTP_HOST}" pattern="^(www\.)?subdomain2\.domain\.com$" ignoreCase="false" />
</conditions>
<action type="Redirect" url="https://domain2.com/fileorfolderpath" redirectType="Permanent" />
</rule>
</rules>
</rewrite>
<rewrite>
</system.webServer>
</configuration>
Disabling request validation
SOURCE: https://msdn.microsoft.com/en-us/library/hh882339.aspx
all pages in directory
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.web>
<httpRuntime requestValidationMode="2.0" />
<pages validateRequest="false" />
</system.web>
</configuration>
One Page in directory
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<location path="file.aspx">
<system.web>
<httpRuntime requestValidationMode="2.0" />
<pages validateRequest="false" />
</system.web>
</location>
</configuration>
Disabling in web.config and then disable at top of aspx page
web.config part
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.web>
<httpRuntime requestValidationMode="2.0" />
</system.web>
</configuration>
asp.net part
This will be the first thing on the actual page thats submitting the form.
<%@ Page validateRequest="false" %>
