tags:

views:

115

answers:

1
Q: 

Impersonating user with Entity Framework

So we have our web app up and going with entity framework. What we'd like to do is impersonate the current user when we're accessing the DB. We're not interested in setting impersonation up in our web config.

Ideally using something like this: http://geekswithblogs.net/jkurtz/archive/2007/08/27/114992.aspx when we're about to access data.

UPDATED: I'm looking for a way to abstract this code out so I don't have to have it in every repository function call.

+2  A: 

Your EF connection string is going to need to be set up for using a trusted connection.

You won't need to set up Impersonation in your web.config, but you do need to be using Windows Authentication.

Then just do this:

using (((WindowsIdentity)HttpContext.Current.User.Identity).Impersonate())
using (var dbContext = new MyEntityFrameworkContainer())
{
    ...
}

Any code inside the curly braces of the using statements will run as the authenticated user.

Bryan Batchelder  2009-12-23 20:03:59
Ok, that's similar to the link I posted but I'm looking for a way to abstract that out into an EF event (or somewhere) where I don't have to keep declaring that in every repository function.
RailRhoad  2009-12-23 20:05:51
Probably not the best idea. What happens when you want to perform a query under the system identity? I would definitely keep impersonation opt-in rather than opt-out.
Bryan Batchelder  2009-12-29 01:25:38

related questions

What is the difference: LoadUserProfile -vs- RegOpenCurrentUser
Impersonating users to access hives - various methods, what are the practical issues?
what user account does my IIS hosted wcf service run under?
Want my WCF service to run under the administrator account
Impersonation and Delegation
asp.net impersonation
Impersonate another user in Visual SourceSafe
ASP.NET Impersonation and SQL Server Trusted Connection Calls
can log4net be configured to run under its own identity?
System.Diagnostics: How to log using an identity
C#: Load roaming profile and execute program as user
ASP.NET: Impersonate against a domain on VMWare
ASP.NET aspx page code runs impersonated though impersonation is disabled
Need to Impersonate user forAccessing Network resource, Asp.Net Account
Impersonation MFC C++
Exchange Web Services, try to use ExchangeImpersonationType ...
How do I move files from one machine to another using ASP.NET?
Reading hidden share in C#
Calling WMPLib.mediaCollection methods from ASP.NET on IIS return empty lists
Is it possible to impersonate a user without logging him on?
Impersonation in .NET
Can I turn off impersonation just in a couple instances.
Is it possible to unit test a class that makes P/Invoke calls?
Impersonation in IIS 7.0
Sharepoint: executing stsadm from a timer job + SHAREPOINT\System rights