tags:

views:

60

answers:

2
Q: 

User.IsInRole returning false

My ASP.NET app is using windows authentication. If I run the following code:

        WindowsIdentity wi = (WindowsIdentity)User.Identity;
        foreach (IdentityReference r in wi.Groups)
        {
            ListBox1.Items.Add(r.Translate (typeof (NTAccount)).Value);
        }
        if (User.IsInRole ("Everyone"))
            Label1.Text = "Is in role";

The listbox will contain the name of every group the user belongs to. If I then call User.IsInRole, and pass in the name of any of those groups, I always get a false.

Can anyone tell me what I am doing wrong?

Thanks

A: 

Is impersonation turned on in web.config?

Brian  2010-03-15 23:07:07
+2  A: 

We need to see your web.config. How are roles handled? Is the role manager even enabled?

EDIT:
You need to use this format:

User.IsInRole(@"DOMAINNAME\rolename")

You are leaving off the domain name. If that still doesn't work, make sure you've got your role provider set in web.config:

<roleManager enabled="true" defaultProvider="AspNetWindowsTokenRoleProvider"/>

This information comes straight from MSDN. Look at the "Checking Role Membership in Code" section. It's all there.

Bryan  2010-03-16 01:59:23
I'm betting that this is it. The identity is there, sure, but membership and roles are two very different things.
Aaronaught  2010-03-16 02:15:48
If groups and roles are two different things, how would I enumerate all roles a user belongs to?
Curtis  2010-03-16 13:24:14
System.Web.Security.Roles.GetRolesForUser(). ASP.NET *can* use Windows groups as Roles, but that's not required or enabled by default; it entirely depends on your web.config.
Bryan  2010-03-16 18:02:43
Can you show me how to modify my web.config file to allow asp.net to treat windows groups as roles?Thanks
Curtis  2010-03-16 22:34:16
Now that I look at your code again, it's possible you're just not checking the role properly. See my edit.
Bryan  2010-03-17 05:49:30
Thanks, Bryan. Adding defaultProvider to the roleManager did the trick.
Curtis  2010-03-17 15:44:45

related questions

Is it better to create Model classes, or just stick with generic database utility class?
What are effective options for embedding video in an ASP.NET web site?
Visual Studio 2008 debugger already attached work-around
Tracking state using ASP.NET AJAX / ICallbackEventHandler
ASP.NET Display SVN Revision Number
ASP.NET URL Rewriting
How can I change the background of a masterpage from the code behind of a content page?
Easy way to AJAX WebControls
How do I define custom web.config sections with potential child elements and attributes for the properties?
ASP.NET MVC "CRUD" Database Sample
Are Multiple DataContext classes ever appropriate?
How to RedirectToAction in ASP.NET MVC without losing request data
Triple Quotes? How do I delimit a databound Javascript string parameter in ASP.NET?
ASP.NET built in user profile, Vs old stile user class/tables
What's a good book for learning ASP?
Bandwith throttling in IIS 6 by IP Address
ASP .Net Custom Client-Side Validation
How to get the value of built, encoded ViewState?
Decent, simple, GIS/mapping component for ASP.NET?
Checklist for IIS 6/ASP.NET Windows Authentication?
How to write to Web.Config in Medium Trust ?
ASP.NET, Visual Studio and Subversion - how to integrate?
Floating Point Number parsing: Is there a Catch All algorithm?
How do I sync the SVN revision number with my ASP.NET web site?
ASP.NET Site Maps