Wrox Programmer Forums
| Search | Today's Posts | Mark Forums Read
ASP.NET 2.0 Basics If you are new to ASP or ASP.NET programming with version 2.0, this is the forum to begin asking questions. Please also see the Visual Web Developer 2005 forum.
Welcome to the p2p.wrox.com Forums.

You are currently viewing the ASP.NET 2.0 Basics section of the Wrox Programmer to Programmer discussions. This is a community of software programmers and website developers including Wrox book authors and readers. New member registration was closed in 2019. New posts were shut off and the site was archived into this static format as of October 1, 2020. If you require technical support for a Wrox book please contact http://hub.wiley.com
  #1 (permalink)  
Old May 4th, 2008, 03:29 PM
Authorized User
 
Join Date: Aug 2004
Location: , , .
Posts: 58
Thanks: 0
Thanked 0 Times in 0 Posts
Default Role based security

Hi friends,

   I am developing an application. Most of the pages include a form to insert data, griview to display, selecting a record in gridview to edit or delete...
But, I have different roles to users of my application. Some users are allowed to add, edit and delete. Some to add only. Some to add and edit.

How can I create roles and disable them to perform an action based on the role. Truly say, button based security.

How can I achieve this.

Thanks in advance

  #2 (permalink)  
Old May 5th, 2008, 08:34 AM
planoie's Avatar
Friend of Wrox
Points: 16,481, Level: 55
Points: 16,481, Level: 55 Points: 16,481, Level: 55 Points: 16,481, Level: 55
Activity: 0%
Activity: 0% Activity: 0% Activity: 0%
 
Join Date: Aug 2003
Location: Clifton Park, New York, USA.
Posts: 5,407
Thanks: 0
Thanked 16 Times in 16 Posts
Default

You can create roles in the standard ASP.NET membership provider services. Users get assigned to these roles.

In order to implement security on a granular level such as you describe, you'll need to allow all users that can use any functionality access to the pages. This is as far as the default security model provides. Beyond that, you'll need to programmatically enable the functionality that each role can perform on each page by checking the current user's roll.

-Peter
compiledthoughts.com
  #3 (permalink)  
Old May 6th, 2008, 02:54 AM
Authorized User
 
Join Date: Aug 2004
Location: , , .
Posts: 58
Thanks: 0
Thanked 0 Times in 0 Posts
Default

Hi,

  Thanks for the reply.
Can you suggest me any link available for this topic(regarding my question).

Thanks

  #4 (permalink)  
Old May 6th, 2008, 11:22 AM
planoie's Avatar
Friend of Wrox
Points: 16,481, Level: 55
Points: 16,481, Level: 55 Points: 16,481, Level: 55 Points: 16,481, Level: 55
Activity: 0%
Activity: 0% Activity: 0% Activity: 0%
 
Join Date: Aug 2003
Location: Clifton Park, New York, USA.
Posts: 5,407
Thanks: 0
Thanked 16 Times in 16 Posts
Default

How about googling "ASP.NET membership provider"?

-Peter
compiledthoughts.com
  #5 (permalink)  
Old May 6th, 2008, 11:41 AM
Friend of Wrox
 
Join Date: Mar 2007
Location: Hampshire, United Kingdom.
Posts: 432
Thanks: 0
Thanked 1 Time in 1 Post
Default

Second that, I am new to ASP.NET Providers as well, there is a wealth of information on the net about this..

Spent many hours looking at this, interesting stuff! (albeit frustrating at times!)

Rob
http://robzyc.spaces.live.com


Similar Threads
Thread Thread Starter Forum Replies Last Post
Code Access Security & Role Based Security robzyc C# 6 April 11th, 2008 02:31 AM
Tag library for field level role based security mmalik_altaf Pro JSP 0 June 7th, 2006 05:02 AM
Authentication and Role-Based Security swandown ASP.NET 1.0 and 1.1 Basics 0 October 11th, 2004 04:07 PM





Powered by vBulletin®
Copyright ©2000 - 2020, Jelsoft Enterprises Ltd.
Copyright (c) 2020 John Wiley & Sons, Inc.