Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o

• From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Wed, 21 Dec 2005 03:09:16 -0800

Hello Stefan,

Context.User.Name
and
Context.User.GetType().FullName

?
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

Hi Dominick!
Thanks for the reply.
Yes I´m passing the AzMan role to IsInRole.
Like User.IsInRole("roleX")
In AzMan it looks like:
Role Assignments:
-roleX "points at" MyAccountGroup(myDomain\MyAccountGroup)
But it doesn´t work:
?user.IsInRole("roleX")

False

?roles.IsUserInRole("Steve", "roleX")

True

What can be wrong?

"Dominick Baier [DevelopMentor]" wrote:

Hello Stefan,

i guess you set up your authorization store like this

roleX points to domain\GroupX

or similar

you have to pass the name of the AzMan role into IsInRole.

The security trimming feature takes the url in the sitemap file and
compares
the users' authorization to the <authorization> element in
web.config.
The <authorization> element must use the AzMan role names in the
allow/deny
elements.
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com

Hello!
I´m using windowsauthentication in my asp.net 2.0 website. I have
some
problems using the rolemanager. I´m using the
AuthorizationStoreRoleProvider
to perform "role checks" against active directory (win 2000).
The problem is that the User.Identity.Name is like <domain>\<user>
and
I
think that is what is used when checking roles, but it only works
for
me if i
only supply the <user> when checking a role.
Some output :
?user.Identity.Name
"myDomain\Steve"
?user.IsInRole("myRole")
False
?roles.IsUserInRole("Steve", "myRole")
True
?roles.IsUserInRole("myDomain\Steve", "myRole")
False
The problem here is that I´m using securitytrimming so that the user
only see´s links to pages which they have access to and this does
not
work becuase of this. What can I do about this? Can i change
something
in my configuration or can I change some property in active
directory
or something.
Thanks In Advance
/ Stefan

.

• Follow-Ups:
  • Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
    • From: Dominick Baier [DevelopMentor]

• References:
  • Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
    • From: Stefan

• Prev by Date: Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
• Next by Date: Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
• Previous by thread: Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
• Next by thread: Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
• Index(es):
  • Date
  • Thread

Relevant Pages Re: ASP.Net 2.0: Problem User.isinrole() instead o ... Dominick Baier - DevelopMentor ... the users' authorization to the element in ... The element must use the AzMan role names in the ... (microsoft.public.dotnet.framework.aspnet.security) Re: ASP.Net 2.0: Problem User.isinrole() instead o ... Dominick Baier - DevelopMentor ... the users' authorization to the element in ... The element must use the AzMan role names in the ... (microsoft.public.dotnet.framework.aspnet.security) Re: ASP.NET 2.0 Authorization Roles ... Dominick Baier - DevelopMentor ... you have to use the domain\groupname format for windows groups. ... (microsoft.public.dotnet.framework.aspnet.security) Re: ASP.Net 2.0: Problem User.isinrole() instead o ... Dominick Baier - DevelopMentor ... the users' authorization to the element in ... The element must use the AzMan role names in the ... (microsoft.public.dotnet.framework.aspnet.security) Re: ASP.NET 2.0 Authorization Roles ... Dominick Baier - DevelopMentor ... what am I missing here. ... (microsoft.public.dotnet.framework.aspnet.security)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint