tags:

views:

50

answers:

2
Q: 

Role-based intranet search

I'm currently working on an ASP.NET 3.5 intranet that uses role-based security, both on the page level and the page content level in some cases. I'd like to implement a site-wide search, but restrict results according to what the current user would normally see when they visit a given page. I suppose it would have to index the site separately for each user?

I've searched the ASP.NET community control gallery as well as Google, and have not found anything that can index in such a specific way. Can anyone offer a link to a pre-built control/solution that will handle this scenario, or a custom technique that I could try?

Thanks.

A: 

If you store somewhere that what content is accessible to what roles then it is only matter of another join in your query.

Another but expensive option is to get the search results and then filter them based on the accessibility of requesting user.

TheVillageIdiot  2009-08-26 14:48:14
A: 

Basically, for each URL you retrieve you could have extra attributes to map the user to the resource as follows:

<a href="~/somepage.aspx" id="someLink" RoleAuth="xxx" RoleArgs="yyy" runat="server" />

Then you could use a Web Part, control, etc., to display each result link based on the user's logged-in credentials :-)

IrishChieftain  2009-08-26 15:53:13
This is the best solution I've seen so far. Looks like it will achieve the level of granularity I am looking for.
Jason B  2009-08-26 16:07:46

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps