I have a PHP site (Default Web Site) and an ASP.NET site (application under the Default Web Site) running together.
I have set up Windows Authentication for the Default Web Site and it's fine. The problem is my ASP.NET application creates a web request – (HttpWebRequest)WebRequest.Create(url) – to pull in information from the PHP application. It's fine without authentication but with Windows Authentication it gets a (401) Unauthorized response.
I figured out I can pass credentials with request.Credentials = new NetworkCredentials(user, pwd, domain); but I'm really looking for a way for the PHP application allow the other application on the same server (site even) through.
How can I tell the Default Web Site to allow these requests?
Best Answer
I don't think you can bypass the IIS authentication. After all, this is what it is for :)
What you could do is setup the PHP website twice, once with authentication, and once without.
On the site without authentication, make sure you set IP Restrictions, to only allow localhost requests