How do I serve static files only to authorized users?

Yes, they should go in wwwroot. Currently there is no built-in way to secure wwwroot directories. But creating a middleware module to accomplish it is pretty straightforward. There is an easy to follow tutorial here.

If you’re not familiar with developing middleware, I posted a GitHub project that shows how to create middleware in three easy steps. You can download the project here.

You don’t need a controller to access static files.

Related Contents:

  1. AddTransient, AddScoped and AddSingleton Services Differences
  2. Increase upload file size in Asp.Net core
  3. Access the current HttpContext in ASP.NET Core
  4. Token Based Authentication in ASP.NET Core
  5. How to read request body in an asp.net core webapi controller?
  6. Return View as String in .NET Core
  7. Dynamically access table in EF Core 2.0
  8. ASP.NET Core return JSON with status code
  9. Inject service into Action Filter
  10. .NET Core 2.2 Can’t be Selected In Visual Studio Build Framework
  11. How to read values from the querystring with ASP.NET Core?
  12. How to instantiate a DbContext in EF Core
  13. IdentityServer4 Role Based Authorization for Web API with ASP.NET Core Identity
  14. Upload files and JSON in ASP.NET Core Web API
  15. How do I access Configuration in any class in ASP.NET Core?
  16. Render Razor View to string in ASP.NET Core
  17. How to resolve IOptions instance inside ConfigureServices?
  18. Change route collection of MVC6 after startup
  19. Unable to resolve service for type while attempting to activate
  20. @Html.Action in Asp.Net Core
  21. JsonSerializerSettings and Asp.Net Core
  22. How do I get the kestrel web server to listen to non-localhost requests?
  23. ASP.NET Core 3.0 System.Text.Json Camel Case Serialization
  24. How to return a specific status code and no contents from Controller?
  25. How to seed an Admin user in EF Core 2.1.0?
  26. How do I write logs from within Startup.cs?
  27. Parse and modify a query string in .NET Core
  28. Asp.net core Identity successful login redirecting back to login page
  29. Command dotnet ef not found
  30. ‘No database provider has been configured for this DbContext’ on SignInManager.PasswordSignInAsync
  31. Unable to create migrations after upgrading to ASP.NET Core 2.0
  32. .NET Core Identity Server 4 Authentication VS Identity Authentication
  33. Get current URL in a Blazor component
  34. Uploading and Downloading large files in ASP.NET Core 3.1?
  35. ASP.NET Core 2.0 disable automatic challenge
  36. How to consume a Scoped service from a Singleton?
  37. Integration test and hosting ASP.NET Core 6.0 without Startup class
  38. Get all registered routes in ASP.NET Core
  39. What are the costs and possible side effects of calling BuildServiceProvider() in ConfigureServices()
  40. Read appsettings json values in .NET Core Test Project
  41. Correlation failed in net.core / asp.net identity / openid connect
  42. Windows authentication in asp.net 5
  43. Setting up Swagger (ASP.NET Core) using the Authorization headers (Bearer)
  44. .NET Core 3.0: Razor views don’t automatically recompile on change
  45. Proper way to register HostedService in ASP.NET Core. AddHostedService vs AddSingleton
  46. No service for type ‘Microsoft.AspNetCore.Identity.UserManager`1[Microsoft.AspNetCore.Identity.IdentityUser]’ has been registered
  47. Identity in ASP.Net Core 2.1< - Customize AccountController
  48. How do I reference a .NET Framework project in a .NET Core project?
  49. Pass Array into ASP.NET Core Route Query String
  50. ASP.NET Core 1.0 on IIS error 502.5 – Error Code 0x80004005

Leave a Comment