Security :: Applying Roles To Files?

Aug 17, 2010

I currently use Roles / Access Rules to control access to my website. This work fine for folders, but I'm not sure how to implement this on individual aspx pages.

Scenario: I have folder that I granted access to everyone. I have one file that I only want members of the Admin role to be able to access.

How can I accomplish this? I would like to avoid putting this file into another folder.

View 2 Replies


Similar Messages:

Security :: Roles Not Applying In Web.config (NTLM Authenticated Users)

Jun 3, 2010

I am not able to allow/deny users based on roles in the web.config (using <location path>). The following does not work even if the user is in the 'Admin' role:[Code]....

I am able successfully execute IsUserInRole() and GetRolesForUser() in the codebehind and get expected results. The same applies to the web.sitemap, adding roles in there do not seem to apply to the user even if he is a member of the role.

Here is my web.config (trimmed some sections out so it's not too long):[Code]....

And web.sitemap:

[Code]....

View 8 Replies

Security :: How To Hide Multiple Roles With Roles.getallroles()

Mar 7, 2011

I have a multi level application that I am developing and need to block multiple rows from being joined. I know how to hide one role but I cannot figure out how to hide multiple.

Here is my current code

[Code]....

View 2 Replies

Web Forms :: Dynamic Css Files Selection While Applying Themes?

May 19, 2010

In my project, I have two themes applied to suite the two customers based on their username.

My structure is like these:

Theme1: -> xyz.css, xyz_blue.css, xyz_green.css, xyz_red.css
Theme2: -> xyz.css, xyz_blue.css, xyz_green.css, xyz_red.css

If I apply Theme1 or Theme2 to my project, since the common style definition names in the css files are same, it's not applying properly.

For kind information, before I start applying Themes, I was using "Link" to link the css file at run-time by enabling it using the "ID" property like

<link href="..." id="xyz"/>

It was working fine. AFter applying themes, it got confused like what css files to be loaded and what style definitions to be run as it is duplicated or a-needy-one for my approach in project.

View 3 Replies

Security :: Automatically Assigning Roles / Standard Practice For Assigning Roles To Newly Signed-on members?

May 17, 2010

Newb question: what is the standard practice for assigning roles to newly signed-on members. Is it usually manual or is there a way of automatically assigning roles. Being completely new to this, I am confronted by the issue of my site having three different roles that new members could fall into, but am unsure about how to assign each a role. I can't imagine having to go through the process manually if I have thousands of members.

View 6 Replies

To Implement Code Access Security, And URL Based Security Using The Roles & Types?

Apr 24, 2010

[ASP.NET 3.5, FormsAuthentication, SQL Server]

In the Roles table there is Role, and RoleType.

I have 3different roles, 2 of which have sub-roles.

Example

Role----------------------Type

Adminstrator
Subscriber---Basic
Subscriber---Business

I need to implement Code Access Security, and URL based security using the roles & types...

For instance, the (Subscriber/Basic) would need to view a different set of pages, and have different access to things then a (Subscriber/Business).

I think I can handle the Code Access security with a custom attribute, but I am unsure to how enforce a User be apart of 2 roles in the URL Authorization.

I am currently using the web.config to deny/allow access to the directories/pages.

e.g.

/Areas/Admin/web.config

[Code]....

Is it possible to force the user to be apart of 2 roles with this technique?

View 1 Replies

Security :: How To Get Roles After Login

Jan 7, 2010

I have used .net login control to authenticate user,i have three types of role ,role1,role2 and role3 and i have users and user have different roles.

now my requirement is like as per loggedin user i want to redirect user on particular page as per role.

for example if loggedin user role is role1 than he will redirect default1.aspx
for example if loggedin user role is role2 than he will redirect default2.aspx
for example if loggedin user role is role3 than he will redirect default3.aspx

and one question if same user may be have more than one role than what should happen???

I got a solution for same than if we are used "loggingin" event than it would be possible but i had placed login control in login view anonymous template because as per my requirement i want that after successfull login user can't see login control on page.thats why i didn't get the login control event on code.

View 6 Replies

Security :: Is There A Way To Set Up 2 Tiers Of Roles

Mar 22, 2010

In our system now, we have a class of user and beneath each class, there's a type of user.

Is there a way to setup and use the ASP.Net role provider with this kind of setup?

View 2 Replies

Security :: Specify Roles While New Registration?

Feb 20, 2010

i am new to asp.net, i am creating a small website for my college, in that.

Only the admin's can create other users...

Now while using the nw registration wizard, i hav to mention the role also in that page.

View 5 Replies

Security :: Create Roles In Asp?

Jun 10, 2010

can any one tell how to create the roles in asp.net? when ever Admin creates the roles, there it self he should assing the pages,which pages should be open when ever perticular person enters in to the site. When ever Admin wants to assing the Roles,all pages appear in grid view with check box,if he checks that pages,he able to access other wise he couldnot access that page.

View 1 Replies

Security :: Associate App With Roles?

Aug 3, 2010

i want to create a webservice that reading from the user identity interacts with a db, where there are app names and group that can use that app, and gives to the user a list of operation that he can use.

My question is, is there any table in apsnetdb that does this association or i should create a costum table.

View 1 Replies

Security :: Membership Roles In MVC Asp 3.5?

Mar 1, 2010

Pls explain the Membership Roles in MVC ASP.NET 3.5

View 1 Replies

Security :: How To Use Roles In Views

Feb 27, 2011

I know how use Roles in Controller:

[Code]....

In this situation, any one who is not "admin" can'nt vist the "About.cshtml". But what if I want anonymous can see part of the "About.cshtml"?

[Code]....

I know code above is wrong, But how can implement my goal in Views

View 2 Replies

Security :: Non-asp Files / Moved The Pages And Files To Other Folders And Set The Web.config File On This Folder?

Jul 1, 2010

I was following the tutorials from this two sites:

http://www.15seconds.com/issue/070104.htm

http://aspnet.4guysfromrolla.com/articles/020404-1.aspx

Following the first site, it had worked but when I´ve moved the pages and files to other folders and set the web.config file on this folder, now it won´t work at all!!!

The file is an *.swf object. I did put the asapi.dll to map the extension on the website root, I´ve put the

[Code]....

on the web.config new folder and on the web.config website´s root.

It won´t work!!! I can access the file directly!!! on the web.config of the folder that contains the file, there is a <deny users="*" /> line.

View 4 Replies

Security :: Login To Different Pages With Different Roles?

May 18, 2010

I have created 3 different folders (admin, user, viewer) in my site and each has a different template (masterPage). I created user and roles which are admins, users, and viewers. I assigned each role to a user in .Net administration Tool.

What I need to do is to allow each user to access his page only and deny access to others , except for the admin who can access all pages.

View 4 Replies

Security :: Redirecting Based On Roles C#?

Oct 5, 2010

I'm trying to redirect users upon login based on their roles which were defined in the Administer website feature of asp.net.Heres what I'm trying protected void Login1_LoggedIn(object sender, EventArgs e)

View 2 Replies

Security :: Redirecting Different Roles WITH Password?

Oct 7, 2010

Im trying to redirect different roles to different pages. Its working but the code I'm entering allows people through even with incorrect passwords. protected void Login1_Authenticate(object sender, AuthenticateEventArgs e)

View 1 Replies

Security :: How To Assign Two Roles For One User

Jan 11, 2010

Im now in assigning a roles to a user. But, 1 of my user wants me to assign 2 roles for him.. The situasion is like this :

I have a few roles which are :

- zone head

-zone officer

-clerk

The problem is now 1 person can be assign for 1 role only..

How can i assign 2 roles for 1 user..

View 4 Replies

Security :: Synchronization Between Two Users With Different Roles?

Jul 2, 2010

I'm workin with Visual studio 2010 and I'm trying to create an ASP.net Web Site, language used - C#

I have 2 different pages, for 2 different users with 2 different roles.Each page has a textbox.I have already created them.What I want to do, is to make a bind between this 2 textboxes, so that the second to get the first boxes' text.I managed to do it, but only if the textboxes are on the same page, very easy (Textbox2.Text=TextBox1.Text) . But how to do it for 2 different pages, for 2 different users with 2 different roles?

Another trouble would be....How can I connect the both users same time....after i start debugging the project, I do a sign in but when I sign in with the second user,the first is automaticly siggned out and the text it's lost.Then, how can they synchronize and the second user see what the first one wrote,using that 2 textboxes? Wich is the solution?

View 4 Replies

Security :: Authentication - Redirect URL For Different Roles?

Mar 10, 2010

I am currently having a spot of bother in something im trying to create. I want it so when a user who is in a certain role logs in they are directed to a certain page, and any other normal users are directed to another page.

I think i have this sorted via code but...

-The first time it will work, the 'admin' user will get directed to the appropriate page

-I then log out and log in as a normal user and get directed to the appropriate page

-then when i log out of that users account and back into the admin one i get directed to the normal users page instead.

-additional to this, I tried it on a different machine logging in as the admin user only to be redirected to the normal users page (is my session being stored somewhere?)

Ive traced through the problem and the user name and password being subbmitted are what they should be, yet it skips the true part of my IF statement for being in that role.

Here is my code I am using on the login form:

[Code]....

-When stepping through if seen it work and not work with the same values, I cant understand the logic of its inconsistency

the code i am using for the logout is (this is on my masterpage):

[Code]....

View 4 Replies

Security :: Web.config Roles / How Can Access

Jan 10, 2011

I have three roles:

AdminEditorGeneral

How can i give acces so to:

1- All users in roles Admin and Editor
2- Specific users from role General

i tried this but with no luck:

[Code]....

View 2 Replies

Security :: Adding User To Certain Roles?

Aug 24, 2010

I have setup ASP security in my application. I used the following tutorial, just wondering if someone can tell me how i can setup this up to allow the creation of a user?

http://weblogs.asp.net/scottgu/pages/Recipe_3A00_-Implementing-Role_2D00_Based-Security-with-ASP.NET-2.0-using-Windows-Authentication-and-SQL-Server.aspx

where to find or what to search on to find some example of how to add the option for adding users?

I have the above setup and its working, but only because of the accounts i created with my global.asax file.

I need to give the admins access to add a new user. Currently i can search on existing users and update them, but need to add the ability to add a new user.

View 4 Replies

Security :: Access When Changing Roles?

Nov 3, 2010

well i have a simple application using an authentication (user and password) before accessing and there are several roles bound to each user.

in my web.config i have configured the acces for each page according to each role, this is an example below:

[Code]....

and i have 2 users:

1: admin (default role: administrator)

2: guest (default role: role1)

my problem is as follows:

if i give acces to the user "guest" to open the "admin.aspx" page with changin him his role from "role1" to "administrator", this one do not function except if i recharge the web.config file to the server it's just after this manipulation that this user "guest" arrives to open the page "admin.aspx".

i don't know why this problem occurs, normally changing the user role will applies instantaneously.

View 6 Replies

Security :: Error: Specify Roles During Registration?

Mar 5, 2010

I want to create a user wizard from which the user can choose the roles during the registration procedure..

For this i followed a video tutorial and wrote the following code

<script runat="server">
Public Sub ActivateStep(ByVal sender As Object, ByVal e As System.EventArgs)
ListBox1.DataSource = Roles.GetAllRoles()
ListBox1.DataBind()
End Sub

[Code]....

This is the code i used.

When i run this.. It runned well...

But

-- it doesn's showed the complete wizard step..

-- it created the user with the provided user name

-- the user was not assigned with the role specified.

View 3 Replies

Security :: Relationship Between Roles And Functionality?

Oct 18, 2010

We have an ASP.NET web application that has been around for over 4 years now. The web app uses ASP.NET role management with a custom role provider. The custom role provider connects to a database which includes tables for Users, User Groups, and Roles, with a table linking roles to user groups.

Over the years the application has grown in functionality and roles have been added. We now have around 30 roles and there is a complaint that it's not clear (due to lack of documentation, bad naming or whatever) what functionality a particular role gives a user.

Is there guidance on how to make the relationship between roles and functionality more transparent? list out the application functionality in another table and create a relationship between Role and Functionality. The application security would then be programmed against the items in the Functionality table, and the relationships between role and functionality could be maintained through a UI.

To me this approach doesn't quite fit with the concepts behind ASP.NET role based security. All the framework code methods refer to roles, e.g. "RoleProvider.IsUserInRole(string username, string roleName)" and:

<authorization>
<allow roles="members" />
</authorization>

View 2 Replies







Copyrights 2005-15 www.BigResource.com, All rights reserved