http://www.cnblogs.com/fish-li/archive/2012/04/15/2450571.html
View Code
1 <location path="admin/web"> 2 <system.web> 3 <authorization> 4 <deny users="?"/> 5 </authorization> 6 </system.web> 7 </location> 8 <location path="admin/login/login.html"> 9 <system.web> 10 <authorization> 11 <allow users="*"/> 12 </authorization> 13 </system.web> 14 </location>
deny users="*"
deny users="?"
用法不能搞混,前者通常和 allow roles="admin" 搭配使用。