The Forefront TMG Web proxy includes a pointer to the HTTP_FILTER_ACCESS_DENIED structure in the notification that it sends to Web filters when a user is presented with an Access Denied error message. If your filter should be notified for this event, it must register to receive SF_NOTIFY_ACCESS_DENIED notifications. For more information about the types of event notifications that are sent to Web filters, see Event Notifications.
typedef struct _HTTP_FILTER_ACCESS_DENIED {
const CHAR* pszURL;
const CHAR* pszPhysicalPath;
DWORD dwReason;
} HTTP_FILTER_ACCESS_DENIED,
*PHTTP_FILTER_ACCESS_DENIED;
A null-terminated string that specifies the URL that requested access to the resource.
A null-terminated string that specifies the physical path of the resource that was requested.
A DWORD date type containing flags that indicate the reasons for the denial. It can have one of the following values.
| Value | Meaning |
|---|---|
|
SF_DENIED_LOGON |
The client could not be logged on. |
|
SF_DENIED_RESOURCE |
The resource was denied by a Windows discretionary access control list (DACL). |
|
SF_DENIED_FILTER |
A Web filter denied the request. |
|
SF_DENIED_BY_CONFIG |
The server configuration denied the request. For example, disabling anonymous requests on the server would generate this filter notification when a user without credentials tried to make a request to the server. |
This structure indicates that access to the requested resource has been denied by the server. The structure is generated when there has been a logon failure.
| Server | Requires Windows Server 2008. |
|---|---|
| Version | Requires Forefront Threat Management Gateway (TMG). |
| Header |
Declared in Httpfilt.h. |
Send comments about this topic to Microsoft
Build date: 11/30/2009
© 2008 Microsoft Corporation. All rights reserved.