tags:

views:

91

answers:

1
Q: 

Overriding SQLMembershipProvider

Is there built in methods into .net framework to do the following:

  1. Get role GUID from user name/user GUID
  2. Get role name from role GUID

So far I have been sending queries to the asp_roles and asp_users tables to obtain that information and I'm wondering if there is a nicer way of doing this?

I have the following methods that I store in the ASPUtilities class:

getRoleGUID(guid userGuid) { LINQ joins }

getRoleGuid(string userName) { LINQ joins  }

getRoleName(guid roleGuid) { LINQ joins  }

EDIT:

I have just looked into extending SQLMembershipProvider examples.

Few examples completely override the SQLMembershipProvider, but I think what I'm interested is just adding few extra methods to deal with the roles by using LINQ. Is this feasible?

+1  A: 

If you extend the SQLMembership provider, it will do the exact same thing, send queries to the database to get that information since the roleID is not stored in session. If you don't want to go through that much trouble, you could do a few things.

  1. Create a custom class with these methods that you can call and will return the ID for you of your role. Essentially, move all of your queries to one location.
  2. Store the role ID in session on login. Call your method you created above once and don't requery everytime. Not 100% of the security risks with this one, however, since you are storing some possibly sensitive role information, the id, in session. Might just be overly cautious though :)
Tommy  2010-05-27 11:36:42
Hey,Thanks for the advise. Yes that's what I'm currently doing. I'm not too keen on storing the role in the session variable since it will be a list of roles and user can be added/removed to/from the roles by an admin user, so the information in the session will be out of synch. Utility class seems like a reasonable option, I'm just not too keen on getting some data from .Net classes and some from my own classes, but can't seem to find an alternative so far. Maybe it's not such a bad implementation after all...
vikp  2010-05-27 13:01:51
For simplicity and masking the getting data from some .NET classes and your own classes, wrap the .NET methods with your own method name in your utiltiy class. IE, utilityClass.getRoleName() returns httpcontext.current.user.getRoles (or whatever that call is). Might help clean some of that up, but that is really the only benefit to doing this.
Tommy  2010-05-27 13:22:09
Hey Tommy, thanks for the idea. It will be "centralised" and there won't be soo much code in the controller/web methods.
vikp  2010-05-28 07:31:11

related questions

Displaying Flash content in a C# WinForms application
How to get the value of built, encoded ViewState?
Unhandled Exception Handler in .NET 1.1
How do I connect to a database and loop over a recordset in C#?
How do I most elegantly express left join with aggregate SQL as LINQ query
Get a new object instance from a Type in C#
.NET Testing Framework Advice
Automatically update version number
What is the difference between an int and an Integer in Java/C#?
How to write to Web.Config in Medium Trust ?
WinForms ComboBox data binding gotcha
How do you sort a C# dictionary by value?
Adding Scripting functionality to .NET applications
Floating Point Number parsing: Is there a Catch All algorithm?
How do I print an HTML document from a web service?
Decoding T-SQL CAST in C#/VB.net
Anatomy of a "Memory Leak"
How do I get a distinct, ordered list of names from a DataTable using Linq
Reliable Timer in a Console Application
How do I fill a DataSet or a DataTable from a LINQ query resultset ?
What's the difference between Math.Floor() and Math.Truncate() in .NET?
How do I calculate relative time?
How do I calculate someone's age in C#?
Are there any conversion tools for porting Visual J# code to C#?
When setting a form's opacity should I use a decimal or double?