C.4 Web.config File for the Web Access Server

By default, the Web.config file for the Web Access server is in the /opt/novell/ifolder3/lib/simias/webaccess/ directory. The following is an example of a configured file.

<?xml version="1.0" encoding="utf-8"?>
    <httpRuntime executionTimeout="3400" maxRequestLength="2097152" />
          Set compilation debug="true" to enable ASPX debugging.
          Otherwise, setting this value to false will improve runtime
          performance of this application. Set compilation
          debug="true" to insert debugging symbols (.pdb information)
          into the compiled page. Because this creates a larger file
          that executes more slowly, you should set this value to true
           only when debugging and to false at all other times. For more
          information, refer to the documentation about debugging
          ASP.NET files.
    <compilation defaultLanguage="C#" debug="true" />
          Set customErrors mode="On" or "RemoteOnly" to enable custom
          error messages, "Off" to disable. 
          Add <error> tags for each of the errors you want to handle.
          "On" Always display custom (friendly) messages.
          "Off" Always display detailed ASP.NET error information.
          "RemoteOnly" Display custom (friendly) messages only to users
          not running on the local Web server. This setting is
          recommended for security purposes, so that you do not display
         application detail information to remote clients.
    <customErrors defaultRedirect="Error.aspx" mode="RemoteOnly" />
          This section sets the authentication policies of the
          application. Possible modes are
          "Windows", "Forms", "Passport" and "None".          
          "None" No authentication is performed.
          "Windows" IIS performs authentication (Basic, Digest, or
          Integrated Windows) according to its settings for the
          application. Anonymous access must be disabled in IIS.
          "Forms" You provide a custom form (Web page) for users to
          enter their credentials, and then you authenticate them in
          your application. A user credential token is stored
          in a cookie.
          "Passport" Authentication is performed via a centralized
          authentication service provided by Microsoft that offers a
          single logon and core profile services for member sites.
    <authentication mode="Forms">
      <forms name="iFolderWeb" loginUrl="Login.aspx" timeout="20"
             slidingExpiration="true"  />   
          This section sets the authorization policies of the
          application. You can allow or deny access to application
          resources by user or role. 
            "*" mean everyone,
            "?" means anonymous (unauthenticated) users.
      <deny users="?" />
          Application-level tracing enables trace log output for every
          page within an application.
          Set trace enabled="true" to enable application trace logging.
          If pageOutput="true", the trace information will be displayed
          at the bottom of each page.  Otherwise, you can view the
          application trace log by browsing the "trace.axd" page from
          your web application root. 
    <trace enabled="false" requestLimit="10" pageOutput="false"
           traceMode="SortByTime" localOnly="true" />
          By default ASP.NET uses cookies to identify which requests
          belong to a particular session. If cookies are not available,
          a session can be tracked by adding a session
          identifier to the URL. To disable cookies, set 
          sessionState cookieless="true".
    <sessionState mode="InProc" cookieless="false" timeout="30" />
          This section sets the globalization settings of the
    <globalization requestEncoding="utf-8" responseEncoding="utf-8" />
      <add name="UploadModule" type="Novell.iFolderApp.Web.UploadModule, 
           Novell.iFolderWeb" />
    <add key="SimiasUrl" value="https://localhost" />
    <add key="SimiasCert" value="a_certification_key_goes_here" />
  <location path="Default.aspx">
        <allow users="*" />
  <location path="ICLogout.aspx">
        <allow users="*" />