Role Based authentication in MVC3

StackOverflow https://stackoverflow.com/questions/22152948

  •  19-10-2022
  •  | 
  •  

Question

In my database I have some users and their roles. I can authenticate the user based on the user input. Now I want to retrieve the roles from the database and authenticate the user based on the role for every Controller.

Était-ce utile?

La solution

Authentication and Authorization are two different things. If you want to Authorize someone based on a role then you can decorate a class or method with something like this:

    [Authorize(Roles = "admin")]

this way the controller will reject anyone that does not have an admin role.

Newer versions of MVC have better options for authorization and authentication, but this is what is commonly used in MVC3.

Licencié sous: CC-BY-SA avec attribution
Non affilié à StackOverflow
scroll top