access denied accessing "getattachment" ur in .net core

Is there an error in the event log? What error is shown to the user? Are your attachments stored on the file system or in the database? If stored on the file system, there may be a problem with the file system permissions.

See Storing files in the Kentico documentation and Troubleshooting disk permission problems.

There is no error that the user sees, it just takes them to the not authorized to view page. It sends them directly to my error controller with a 403 error code.

It wouldn't be that bad to work around if I could figure out how to get the url of the page they don't have access to, but it doesn't seem to be in the headers and the url httpcontext gets is the error/403 url even though the url in the browser is to the gettattachment url

For me it isn't clear what the workaround is that you used for the authentication. But if you did it with middleware you could try adding the middleware earlier in the startup registration. That way you could try authenticate the user before Kentico handles the GetAttachment url's.

We tried to make something work with middleware but failed. Even tried to have a Kentico consultant help us, but we got nowhere. All we need is something that recognizes that the user is logged in via windows authentication and then take that users name and log them in as a Kentico user instead. We were able to figure out a workaround like I said, doing this when the user hits the access denied page that Kentico sends them to.

I think I have another workaround for the file stuff. Instead of linking to the getattachment we'll just link to the url of the page. Which will log the user in first. We'll probably take another look at setting up some sort of middleware as well if you have any thoughts on the best way to accomplish that.