Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Stefan <Stefan@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 21 Dec 2005 23:38:02 -0800
?context.User
{System.Web.Security.RolePrincipal}
System.Web.Security.RolePrincipal: {System.Web.Security.RolePrincipal}
Identity: {System.Security.Principal.WindowsIdentity}
Context.User.GetType().FullName does not work for me and I don´t no why
"Dominick Baier [DevelopMentor]" wrote:
> Hello Stefan,
>
> ??
>
> string s = Context.User.GetType().FullName;
>
> works for me on a page - are you really interested in solving that problem??
>
> ---------------------------------------
> Dominick Baier - DevelopMentor
> http://www.leastprivilege.com
>
> > ? Context.User.GetType().FullName
> > Compiler Error Message: BC30456: 'GetType' is not a member of
> > 'System.Security.Principal.IPrincipal'.
> > "Dominick Baier [DevelopMentor]" wrote:
> >
> >> Hello Stefan,
> >>
> >> Context.User.GetType().FullName ??
> >>
> >> ---------------------------------------
> >> Dominick Baier - DevelopMentor
> >> http://www.leastprivilege.com
> >>> ?context.GetType.FullName
> >>> "System.Web.HttpContext"
> >>> ?context.User.Identity.Name
> >>> "myDomain\Steve"
> >>> ?context.User.Identity.IsAuthenticated
> >>> True
> >>> ?context.User.Identity.AuthenticationType
> >>> "NTLM"
> >>> "Dominick Baier [DevelopMentor]" wrote:
> >>>> Hello Dominick Baier [DevelopMentor],
> >>>>
> >>>> sorry - Context.User.Identity.Name
> >>>>
> >>>> ---------------------------------------
> >>>> Dominick Baier - DevelopMentor
> >>>> http://www.leastprivilege.com
> >>>>> Hello Stefan,
> >>>>>
> >>>>> and what do you see in
> >>>>>
> >>>>> Context.User.Name
> >>>>> and
> >>>>> Context.User.GetType().FullName
> >>>>> ?
> >>>>> ---------------------------------------
> >>>>> Dominick Baier - DevelopMentor
> >>>>> http://www.leastprivilege.com
> >>>>>> Hi Dominick!
> >>>>>> Thanks for the reply.
> >>>>>> Yes I´m passing the AzMan role to IsInRole.
> >>>>>> Like User.IsInRole("roleX")
> >>>>>> In AzMan it looks like:
> >>>>>> Role Assignments:
> >>>>>> -roleX "points at" MyAccountGroup(myDomain\MyAccountGroup)
> >>>>>> But it doesn´t work:
> >>>>>> ?user.IsInRole("roleX")
> >>>>>>> False
> >>>>>>>
> >>>>>> ?roles.IsUserInRole("Steve", "roleX")
> >>>>>>
> >>>>>>> True
> >>>>>>>
> >>>>>> What can be wrong?
> >>>>>>
> >>>>>> "Dominick Baier [DevelopMentor]" wrote:
> >>>>>>
> >>>>>>> Hello Stefan,
> >>>>>>>
> >>>>>>> i guess you set up your authorization store like this
> >>>>>>>
> >>>>>>> roleX points to domain\GroupX
> >>>>>>>
> >>>>>>> or similar
> >>>>>>>
> >>>>>>> you have to pass the name of the AzMan role into IsInRole.
> >>>>>>>
> >>>>>>> The security trimming feature takes the url in the sitemap file
> >>>>>>> and
> >>>>>>> compares
> >>>>>>> the users' authorization to the <authorization> element in
> >>>>>>> web.config.
> >>>>>>> The <authorization> element must use the AzMan role names in the
> >>>>>>> allow/deny
> >>>>>>> elements.
> >>>>>>> ---------------------------------------
> >>>>>>> Dominick Baier - DevelopMentor
> >>>>>>> http://www.leastprivilege.com
> >>>>>>>> Hello!
> >>>>>>>> I´m using windowsauthentication in my asp.net 2.0 website. I
> >>>>>>>> have
> >>>>>>>> some
> >>>>>>>> problems using the rolemanager. I´m using the
> >>>>>>>> AuthorizationStoreRoleProvider
> >>>>>>>> to perform "role checks" against active directory (win 2000).
> >>>>>>>> The problem is that the User.Identity.Name is like
> >>>>>>>> <domain>\<user>
> >>>>>>>> and
> >>>>>>>> I
> >>>>>>>> think that is what is used when checking roles, but it only
> >>>>>>>> works
> >>>>>>>> for
> >>>>>>>> me if i
> >>>>>>>> only supply the <user> when checking a role.
> >>>>>>>> Some output :
> >>>>>>>> ?user.Identity.Name
> >>>>>>>> "myDomain\Steve"
> >>>>>>>> ?user.IsInRole("myRole")
> >>>>>>>> False
> >>>>>>>> ?roles.IsUserInRole("Steve", "myRole")
> >>>>>>>> True
> >>>>>>>> ?roles.IsUserInRole("myDomain\Steve", "myRole")
> >>>>>>>> False
> >>>>>>>> The problem here is that I´m using securitytrimming so that the
> >>>>>>>> user
> >>>>>>>> only see´s links to pages which they have access to and this
> >>>>>>>> does
> >>>>>>>> not
> >>>>>>>> work becuase of this. What can I do about this? Can i change
> >>>>>>>> something
> >>>>>>>> in my configuration or can I change some property in active
> >>>>>>>> directory
> >>>>>>>> or something.
> >>>>>>>> Thanks In Advance
> >>>>>>>> / Stefan
>
>
>
.
- References:
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead of <u
- From: Dominick Baier [DevelopMentor]
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Stefan
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Dominick Baier [DevelopMentor]
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Dominick Baier [DevelopMentor]
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Stefan
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Dominick Baier [DevelopMentor]
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Stefan
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- From: Dominick Baier [DevelopMentor]
- Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead of <u
- Prev by Date: Re: Insufficient access rights to perform the operation
- Next by Date: Re: Changing domain user password
- Previous by thread: Re: ASP.Net 2.0: Problem User.isinrole() <domain>\<user> instead o
- Next by thread: Seamless Login
- Index(es):
Relevant Pages
|
|
