Introduction to the Web.config configuration file in ASP.NET-C#.Net Tutorial-php.cn

Home

Backend Development

C#.Net Tutorial

Introduction to the Web.config configuration file in ASP.NET

巴扎黑

Aug 16, 2017 pm 04:11 PM

asp.net

This article mainly introduces the ASP.NET Web.config configuration file in detail and teaches you how to configure the Web.config file. It has certain reference value. Interested friends can refer to it

Analysis:

.NET Web application configuration information (such as the most commonly used authentication method for setting ASP.Net Web applications), which can appear in every step of the application in the directory. When you create a new Web application through VB.NET, a default Web.config file will be automatically created in the root directory by default, including default configuration settings, and all subdirectories will inherit its configuration settings. If you want to modify the configuration settings of a subdirectory, you can create a new Web.config file in the subdirectory. It can provide configuration information in addition to the configuration information inherited from the parent directory, and can also override or modify settings defined in the parent directory.
Modifications to the Web.config file during runtime will take effect without restarting the service (Note: Exception in the section). Of course the Web.config file is extensible. You can customize new configuration parameters and write configuration section handlers to handle them.

1. web.config configuration file (default configuration settings)

All the following codes should be located between the following codes. In order to be more concise, The following examples omit this XML tag.

< configuration>
  < system.web>
  < /system.web>
< /configuration>

1、 Section

## Function: Configure ASP.NET Authentication support (for Windows, Forms, PassPort, None). This element can only be declared at the computer, site, or application level. The element must be used with the section.

eg: The following example is a form-based authentication configuration site. When a user who is not logged in accesses a webpage that requires authentication, the webpage automatically jumps to the login webpage.

< authentication mode="Forms">
  < forms loginUrl="logon.aspx" name=".FormsAuthCookie"/>
< /authentication>

The element loginUrl represents the name of the login web page, and name represents the cookie name.

2. section
## Function: Control client access to URL resources (such as allowing anonymous users to access ). This element can be declared at any level (computer, site, application, subdirectory, or page). Required in conjunction with the section.

Example: The following example prohibits access by anonymous users

< authorization>
 < deny users="?"/>
< /authorization>

Note: You can use user.identity.name to get the current authenticated user name; you can Use the web.Security.FormsAuthentication.RedirectFromLoginPage method to redirect authenticated users to the page the user just requested.

3. Section
Function: Configure all compilation settings used by ASP.NET. The default debug attribute is "True". It should be set to True after the program is compiled and delivered for use (details are described in the Web.config file, examples are omitted here)

4 ,
Function: Provide information about custom error messages for ASP.NET applications. It does not apply to errors that occur in XML Web services.

Example: When an error occurs, jump the web page to a custom error page.

< customErrors defaultRedirect="ErrorPage.aspx" mode="RemoteOnly"> 
< /customErrors>

The element defaultRedirect represents the name of the customized error web page. The mode element means: display custom (friendly) information to users who are not running on the local web server.

5. Section
## Function: Configure ASP.NET HTTP runtime settings. This section can be declared at the computer, site, application, and subdirectory levels. Example: Control the maximum size of user upload files to 4M, the maximum time to 60 seconds, and the maximum number of requests to 100.

6、

作用：标识特定于页的配置设置（如是否启用会话状态、视图状态，是否检测用户的输入等）。可以在计算机、站点、应用程序和子目录级别声明。
示例：不检测用户在浏览器输入的内容中是否存在潜在的危险数据（注：该项默认是检测，如果你使用了不检测，一要对用户的输入进行编码或验证)，在从客户端回发页时将检查加密的视图状态，以验证视图状态是否已在客户端被篡改。(注：该项默认是不验证）

7、

作用：为当前应用程序配置会话状态设置（如设置是否启用会话状态，会话状态保存位置）。
示例：

< sessionState mode="InProc" cookieless="true" timeout="20"/> < /sessionState>
注：
mode="InProc"表示：在本地储存会话状态（你也可以选择储存在远程服务器或SAL服务器中或不启用会话状态）
cookieless="true"表示：如果用户浏览器不支持Cookie时启用会话状态(默认为False）
timeout="20"表示：会话可以处于空闲状态的分钟数

8、

作用：配置 ASP.NET 跟踪服务，主要用来程序测试判断哪里出错。
示例：以下为Web.config中的默认配置：

注：
enabled="false"表示不启用跟踪；requestLimit="10"表示指定在服务器上存储的跟踪请求的数目
pageOutput="false"表示只能通过跟踪实用工具访问跟踪输出；
traceMode="SortByTime"表示以处理跟踪的顺序来显示跟踪信息；
localOnly="true" 表示跟踪查看器 (trace.axd) 只用于宿主 Web 服务器；

9、

<system.webServer> <security> <requestFiltering> <requestLimits maxAllowedContentLength="2147483648"/> </requestFiltering> </security> </system.webServer>
二、自定义Web.config文件配置节
自定义Web.config文件配置节过程分为两步。

一是在在配置文件顶部和标记之间声明配置节的名称和处理该节中配置数据的 .NET Framework 类的名称。

二是在区域之后为声明的节做实际的配置设置。

示例：创建一个节存储数据库连接字符串

< configuration> < configSections> < section name="appSettings" type="System.Configuration.NameValueFileSectionHandler, System, Version=1.0.3300.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"/> < /configSections> < appSettings> < add key="scon" value="server=a;database=northwind;uid=sa;pwd=123"/> < /appSettings> < system.web> ...... < /system.web> < /configuration>
三、访问Web.config文件

你可以通过使用ConfigurationSettings.AppSettings 静态字符串集合来访问 Web.config 文件示例：获取上面例子中建立的连接字符串。

四、创建Web.config文件

1.在“解决方案资源管理器”中，单击“刷新”图标以确认应用程序还没有 Web.config 文件。

如果已使用网站管理工具或某些其他方式来配置应用程序，则可能已自动创建了 Web.config 文件。单击“刷新”更新文件列表。

2.在“解决方案资源管理器”中，右击网站名称，然后单击“添加新项”。
3.在“模板”窗口中，单击“Web 配置文件”

“名称”文本框中的文件名应为Web.config。可以为该文件提供其他名称，不过这是默认名称。.config 文件扩展名可防止 ASP.NET 下载相应文件。
4.单击“添加”创建该文件，然后将其打开进行编辑。

该文件包含本主题后面“示例”部分中显示的代码，并具有一些初始默认值。应用程序从 %SystemRoot%\Microsoft.NET\Framework\\CONFIG 目录下的 Machine.config 和 Web.config 文件继承所有配置设置，但在此处看不到这些默认设置。如果要重写继承的默认设置或添加 httpHandlers 元素（ASP.NET 设置架构）等集合元素，则只需创建应用程序级别和目录级别的 Web.config 文件。

若要查看当前应用程序的所有配置设置，可以运行主题如何：以编程方式查看继承的配置设置和本地配置设置中包含的代码。也可以查看 %SystemRoot%\Microsoft.NET\Framework\\CONFIG 目录下的Machine.config.comments 或 Web.config.comments 文件（这两个文件也包含有用的注释），但这两个文件将不会包含所有运行时设置，请参见如何：以编程方式查看继承的配置设置和本地配置设置。

5. If you changed the Web.config file, save the file.

Saving the Web.config file will restart the application. You can also choose to use the configSource attribute of a single section element to point to a secondary configuration file, and changing the secondary configuration file will not cause the application to restart. For more information, see configSource in General Properties Inherited by Section Elements.

Web.config is a very important configuration file in asp.net applications. The Web.config file can facilitate us to develop and deploy asp.net applications. Through the introduction of this article, I hope it will be helpful to you and for your reference.

The above is the detailed content of Introduction to the Web.config configuration file in ASP.NET. For more information, please follow other related articles on the PHP Chinese website!

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

C# .NET: An Introduction to the Powerful Programming LanguageApr 22, 2025 am 12:04 AM

The combination of C# and .NET provides developers with a powerful programming environment. 1) C# supports polymorphism and asynchronous programming, 2) .NET provides cross-platform capabilities and concurrent processing mechanisms, which makes them widely used in desktop, web and mobile application development.

.NET Framework vs. C#: Decoding the TerminologyApr 21, 2025 am 12:05 AM

.NETFramework is a software framework, and C# is a programming language. 1..NETFramework provides libraries and services, supporting desktop, web and mobile application development. 2.C# is designed for .NETFramework and supports modern programming functions. 3..NETFramework manages code execution through CLR, and the C# code is compiled into IL and runs by CLR. 4. Use .NETFramework to quickly develop applications, and C# provides advanced functions such as LINQ. 5. Common errors include type conversion and asynchronous programming deadlocks. VisualStudio tools are required for debugging.

Demystifying C# .NET: An Overview for BeginnersApr 20, 2025 am 12:11 AM

C# is a modern, object-oriented programming language developed by Microsoft, and .NET is a development framework provided by Microsoft. C# combines the performance of C and the simplicity of Java, and is suitable for building various applications. The .NET framework supports multiple languages, provides garbage collection mechanisms, and simplifies memory management.

C# and the .NET Runtime: How They Work TogetherApr 19, 2025 am 12:04 AM

C# and .NET runtime work closely together to empower developers to efficient, powerful and cross-platform development capabilities. 1) C# is a type-safe and object-oriented programming language designed to integrate seamlessly with the .NET framework. 2) The .NET runtime manages the execution of C# code, provides garbage collection, type safety and other services, and ensures efficient and cross-platform operation.

C# .NET Development: A Beginner's Guide to Getting StartedApr 18, 2025 am 12:17 AM

To start C#.NET development, you need to: 1. Understand the basic knowledge of C# and the core concepts of the .NET framework; 2. Master the basic concepts of variables, data types, control structures, functions and classes; 3. Learn advanced features of C#, such as LINQ and asynchronous programming; 4. Be familiar with debugging techniques and performance optimization methods for common errors. With these steps, you can gradually penetrate the world of C#.NET and write efficient applications.

C# and .NET: Understanding the Relationship Between the TwoApr 17, 2025 am 12:07 AM

The relationship between C# and .NET is inseparable, but they are not the same thing. C# is a programming language, while .NET is a development platform. C# is used to write code, compile into .NET's intermediate language (IL), and executed by the .NET runtime (CLR).

The Continued Relevance of C# .NET: A Look at Current UsageApr 16, 2025 am 12:07 AM

C#.NET is still important because it provides powerful tools and libraries that support multiple application development. 1) C# combines .NET framework to make development efficient and convenient. 2) C#'s type safety and garbage collection mechanism enhance its advantages. 3) .NET provides a cross-platform running environment and rich APIs, improving development flexibility.

From Web to Desktop: The Versatility of C# .NETApr 15, 2025 am 12:07 AM

C#.NETisversatileforbothwebanddesktopdevelopment.1)Forweb,useASP.NETfordynamicapplications.2)Fordesktop,employWindowsFormsorWPFforrichinterfaces.3)UseXamarinforcross-platformdevelopment,enablingcodesharingacrossWindows,macOS,Linux,andmobiledevices.

See all articles