考虑使用在web.config配置/位置节点。在 MSDN

<configuration>
    <location path="MySubDirectory">
        <system.web>
            <authorization>
                <deny users="*"/> <!-- Denies all users -->
            </authorization>
        </system.web>
    </location>
</configuration>