Re: Roles - Access Rule Storage
- From: "Joe Kaplan \(MVP - ADSI\)" <joseph.e.kaplan@xxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 9 Aug 2006 16:27:31 -0500
Are you talking about the roles that are applied to the user who is
authenticated, or are you talking about the authorization policy that is
applied to any given URL in terms of who can access it?
If you want to make the latter dynamic, you can just code this in your pages
directly or write your own HTTP Module that does it. If you look at the
UrlAuthorizationModule (use Reflector to see the code), you can see how it
reads in the authorization configuration applied to the current URL path and
then decides whether the current user has access or not. You could do the
exact same thing in your module, but store the authorization policy in the
database instead and look it up by URL or something. After that, applying
the policy and doing the proper responses is easy and something you could
basically copy from Microsoft's code.
Joe K.
--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"Matt" <mdframe@xxxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:uZRFch$uGHA.1956@xxxxxxxxxxxxxxxxxxxxxxx
Can anyone tell me if is is possible to override how a web application
stores/retrieves the Access Rules for roles? Instead of using the
web.config to store the following:
<system.web>
<authorization>
<allow roles="Admin" />
</authorization>
</system.web>
I would like to store this information in a database table and have the
system pull the access role from the table when needed.
Thanks,
Matt
.
- References:
- Roles - Access Rule Storage
- From: Matt
- Roles - Access Rule Storage
- Prev by Date: Roles - Access Rule Storage
- Next by Date: Help needed in finding the right place to start
- Previous by thread: Roles - Access Rule Storage
- Next by thread: Re: Roles - Access Rule Storage
- Index(es):
Relevant Pages
|
