views:

123

answers:

4

Hi,

We are developing a web app that will have a pretty complex user and permission system.

The general idea is that we have 3 levels of security:

  • a simple user - that can only access basic data that is in a data repository
  • a manager - that can open up data repositories
  • a superuser - that can open up repository factories.

each repository contains various data types(text, images, etc etc).

We are looking for authentication methods that will allow us: 1. Scalability. 2. Customization. 3. To create permissions that will effect the GUI + deny access to certain pages. 4. To create predefined roles - that will allow for easy setup of new users. 5. To create custom roles for specific users - allowing them permission sets that are different from the predefined roles.

Thanks in advance

+3  A: 

What you are telling in this post is an exact description of the type of thing granted by the ASP.NET Membership system, why not use it?

Mitchel Sellers
A: 

Hello,

It does sound like the existing framework would work, or that you could create a custom membership/roles provider to add some of the existing features you are looking for... It depends on the requirement details.

HTH.

Brian
A: 

You can do everything you require using the built-in ASP.NET Membership, Roles, and Profile functionality. I recommend checking out Scott Mitchell's excellent series of articles on how to use and customize this functionality.

Hope this helps!

--Dubs

Dubs
thanks a lot, we decided using the asp.net forms authentication.
Eytan Levit
A: 

Eytan,

ASP.NET Membership would seem to fit the needs that you have and would not appear to add unnecessary bloat; however, if you're still considering an alternative, I'd suggest looking at http://www.MemberProtect.net as an option. You can define privileges and then assign them to roles to meet your application's requirements. The included tutorials and starter project will provide examples in the source code that will show how controlling access based on roles & privileges is handled.

Jason InetSolution, Inc.

Disclaimer: I work for InetSolution and am on the MemberProtect team.

Jason Sherrill