Hi All, I am sure the question that i am going to ask must have been answered a billion times before...but I have been reading so many articles about membership and role management that my head is spinning right now and i think i am a little confused too..... I am really looking to implement role management for Admin interface of my sit...
I am developing an application which users authlogic for authentication. I would like some way of giving users roles so that I can authorize certain actions to certain roles. Is there an 'out of the box' gem or plugin that suits this or would I be better build it from scratch. What would you recommend? ...
I'm starting to use Role Management in my website, and I'm current following along on the tutorial from http://www.asp.net/Learn/Security/tutorial-02-vb.aspx . I'm having a problem with the asp:LoginStatus control. It is not telling me that I am currently logged in after a successful login. This can't be true because after successfu...
How can I get the role description from the ASP.NET membership database, other than querying the database directly? ...
We've got an asp.net mvc website that is currently in a private beta state. As such we are sending out invite codes that must be supplied as part of the registration process for registration to succeed. We'd like to reduce the bar of entry such that users only have to supply the code to gain access rather than going through a more labori...
Hi Guys I'm trying to implement a custom RoleProvider in my ASP.NET MVC application. I've created a custom MembershipProvider and it works, in that I'm able to successfully validate the user. The next step is to implement the RoleProvider to restrict access to certian Controllers to Admin users only. Can anyone provide me with a quic...
I have very simple: [PrincipalPermission(SecurityAction.Demand, Role = "Administrator")] public partial class _Default : System.Web.UI.Page This works - it denies access if role is not administrator. But when it denies access, I simply get a white page (all unhandled exceptions are picked up in Global file and emailed/logged). How do ...
I have a set of four ASP.NET roles that I have been trying to delete - they never want to die. Simply put, I've deleted them successfully by using the website administrator tool and by running the stored procedure: exec aspnet_Roles_deleteRole '/', 'CameraOwner', 1; My application name is '/'. I see the records getting deleted from...
Our site uses role requirement and restful authentication plugins for rails. We are seeing most users able to access the site (login) just fine but a handful of logins are failing after being successfully authenticated and forwarded to the member's controller. It seems like the require roles line isn't finding the appropriate role and ...
I need some advice whether it is recommended to add a membership role to a web application after the web application has been deployed and is in use. The problem with this is that the role is created through the ASP.NET web site admin tool and automatically updates the ASPNETDB database. The ASPNETDB database in the live environment ...
Hi, The SuperAdmin page in my web application has a method call to getAdminStatus() but I cannot find any occurences of this method when searching the entire solution. Is this method part of the .net 2.0 framework. <ItemTemplate> <asp:Label runat="server" ID="admin" Text="<%= getAdminStatus() %>"></asp:Label> </ItemTempla...
Hello, In my current project, we need to authenticate users of an ASP.NET application against Active Directory. I think it can be achieved using the membership provider without too much problems. but we need also to manage user roles that will be kept in the ASP roles management tool. Did anyone implement this configuration? Does it lo...
I'm using the AZROLESLib which is from the COM references "azroles 1.0 Type Library" and I am trying to create a list of the designated tasks for each role that I have currently set in my authorization manager but when I loop through the tasks for the role, I get the role name. I've looked all around but couldn't find anything that woul...
I have a site with 2 sections - one for customers and one for admins, in essence. Each section is in its own directory with its own web.config and sitemap. Security and access works fine. When I am logged in as admin, I want to see menu items that link to the other section, however. I added links to the sitemap, e.g.: <siteMapNode url...
Is there a way to organize the roles in my app like a tree? You know, User can do several things, Moderator is just like user but can do little more, Administator have even more abilitities, etc. I've found nothing in the "Web Site Administration Tool". ...
We have an ASP.NET MVC application for which we have developed our own custom RoleProvider class. Without caching it will access the datastore for every request - bad. The only caching option we can find is (in web.config) via cookies stored on the clients' machines. My two questions are: Is this secure (even with encryption enabled)? ...
I'm porting an ASP.NET application to MVC and need to store two items relating to an authenitcated user: a list of roles and a list of visible item IDs, to determine what the user can or cannot see. We've used WSE with a web service in the past and this made things unbelievably complex and impossible to debug properly. Now we're ditc...
Hi (I'm pretty new to this), Is it possible to add roles to the 'CreateUserWizard' tool so that you tick boxes (or view roles in a drop down menu) and once one or more have been chosen, this information is added to the asp.net configuration automatically? I have the following code: <asp:CreateUserWizard ID="CreateUserWizard1" runat="s...
I am trying to add new roles to a SQL 2005 database via the SMO assemblies. The Roles.Add method just does not seem to add the new role. I have my user account set as securityadmin and sysadmin. Below is the code extract that I am trying to use to set the new role: [assuming d has been set to a database object] Dim dr As New Da...
Yes, this has been asked before here and here. I'm curious as to whether the approach I'm considering is architecturally sound. Let me start off by trying to describe what I'd like to be able to do with my object model: class Person { ISet<Roles> Roles { get; set; } } class RoleDefinition { string Name { get; set; } } class RoleA...