Hi all,
I've got an asp.net app that uses forms authentication that denies anonymous users. It's working fine if i access the server directly, however if i access it via a reverse proxy it does not seem to work so good.
What happens is the reverse proxy sends you to the default page, then gets redirected to the login.aspx page because i'm not logged in, which is all fine and proves that the proxy setup is fine. But it cannot render the login.aspx, giving a 302 (redirect) response.
I'm guessing that somehow asp.net has a way of giving the login.aspx special permissions so that you do not need to be logged in to access it, unlike the rest of a site. I'm further guessing that this logic is failing when accessing it through the reverse proxy, somehow it is thinking 'you're not allowed to see login.aspx because you're not logged in'. However this is just a guess...
Anyway, can someone lend a hand? Thanks a lot in advance.