why my IgnoreRoute does not work?

I want to prevent users access for my "~/Content/..." folder I wrote it as follow in "Global.asax.cs" and put this line of code at the top of every other routes routes.IgnoreRoute("Content/{*pathInfo}");

but it does not work. in fact user can see every files in content folder by type the URL in browser. a开发者_开发百科m I missing something?

How did you figure out that it does not work? Give example.

You may have put it last in the Routing table. So try to move it up so that it gets added to the routing table first. The route collection is an ordered list of routes.

Also try this : Routes.IgnoreRoute("Content/");, but your version of ignore is also correct and it should work.

Lastly, I do not know what you mean when you say the user can see all the contents of the Content folder : Isn't that the point? User must be able to download files from the folder, and we usually just need MVC to ignore the requests from coming into the framework, and so that IIS can directly serve those files.

or did you mean Directory browsing is enabled, and you want to disable that : In that case go to IIS manager, and select your website and look for the Directory browsing option and disable it as shown here.

Your problem cannot be solved by routing constraints. There are 3 significant steps in processing request:

1. IIS got request.
2. IIS watch at filesystem and search for direct correspondence to file
3. If IIS didn't found any file - it gives request to ASP.NET MVC for processing.

So, you need to configure folder security to forbidden direct access to files, but allow access to application, as here. But I don't recommend to secure folder, that should be shared. I don't believe that your site shouldn't have images to display :) If you have some secured content, you need to create another folder.