Web Forms :: Assign Access Rights For Pages To Users
Aug 23, 2013I want to assign page-wise rights to user at the time of registration. So, that he or she can have the rights to access those pages only.
View 1 RepliesI want to assign page-wise rights to user at the time of registration. So, that he or she can have the rights to access those pages only.
View 1 RepliesI`m building the web app in which I will have couple of different modules, and I want to have an opportunity to assign different modules to each users.
I know that good way of doing it is to use ASP.NET Membership and Roles etc.
But -> In my app I have a very simple Memebrship management -> Administrator is the only person who can create and delete users, and I also want to use my own SQL database to hold user data. So to use ASP.NET Mebership I should write my own Membership and Role Providers.
It is clear, but there is a lot of functions I should ovveride which I will never use. Like the whole stuff with question and answer.
I am currently working on an ASP.NET MVC2 application and would just like to know the best way of achieving the following:
Each user that logs into the site pays membership fee which lasts X amount of days. I record the membership payments and the expiry dates in the database.
I would like all users to be able to login even if their membership has expired. However certain Controllers/Actions will be out of bounds to members whose membership have expired.
So my question is what is the best way to redirect users who try to access these pages when their membership has expired?
I don't really want to be calling a method that checks the membership status from each action where I don't want expired members to have access (although if this is the only way I would have to).
I thought about a custom ViewPage that inherits from System.Web.Mvc.ViewPage which I would override the OnInit function and check the membership status and redirect if necessary.
In my web application i have 8 screens such as page1.aspx, page2.aspx, page3.aspx........Page8.aspx. I have created user Settings Web Form where the admin Creates username and password for users with access only for particular pages. I have used check boxes to select their accessibility while creating user setting. How can i limit the access of the users only to certain tabs.(All these pages are in the tabs).
View 5 RepliesWhen I upload a file through a web page to a directory on the webserver the file does not inherit the parent folders rights. So when a user tries to access the file from the local network after the upload they recieve access denied. How can I set the rights on the file after the upload or get the rights to set correctly when the file is uploaded. The file uploads correctly but only has the rights of Network service, system,internet guest account and IIS_WPG. I need it to have a specific user or everyone which the parent folder has and is set to propogate permissions.
View 6 RepliesI want to show columns in gridview based on access rights/roles.That is i want to show parents column if there is parents login or else i want to show students column if there is students login.
View 2 RepliesI have an asp.net web app that uses forms-based authentication, a SqlMembershipProvider (using an encrypted password format), and a SqlRoleProvider. I need to know if it's possible to administer the users (create new users, assign them to roles, etc.) from a windows application - the powers that be don't want any administrative functionality in the web app itself.
Here is the membership provider definition from web.config:
[code]....
So, obviously, I have a Sql Server database that contains the users and roles for the web app. I'd like to create a separate windows app that references the web app assembly, and use the configured MembershipProvider, RoleProvider, and machineKey to create users, assign users to roles, etc. If that's not possible, I can duplicate the configuration settings from web.config within the windows app. But I don't know how to do this either.
Im just wondering if the default access rights of IIS in the PC where it is running is administrator? and by default does IIS has access to computer resources e.g. Printer, Finger Print Scanner, Smartcard reader installed in the same computer where the IIS is running.
View 1 RepliesSomehow I deleted my App_Data folder and had to recreate it... it only had one database in it ... an Access Database. My .aspx pages that use the DB are giving permission errors when they load... I can't find anyplace in my DB or on my VWD Express where I can set the permissions (nor on my hosting service).
View 16 RepliesI have implemented Membership and Role Provider in my web site. Membership and Role information is stored in database created from aspnet_regsql option.
I want to store the access rights given to the pages in ASP.NET Configuation option in Database inspite of web.config file and want to give page wise add, edit, view and delete rights that should also be stored in database.
Is there any inbuit class like Membership and Role to add page access rights?
i am currently developing an asp.net mvc 2 web application and i would like to create new foldersprogrammatically with access rights, in order to enable loged on users upload their image files.My question has to do with how to assign write access using Directory.CreateDirectory function and assigning DirectorySecurity rules (meaning for which user should i enable user rights, etc...). Note that the hosting envirnoment uses IIS 7.
View 1 RepliesQuestion is:
LDAP authentication required Internal users automatically authenticated, external users requires login
Where do I store complex access control rights?
In the AD/LDAP or in the Application itself (asp.membership db).
Looking to build this in asp.net mvc 2 and using membership features, so best practice here i guess is that we roll our own custom provider to acomplish this...
how to implement role based security in asp.net 4.0, in detail. Like from Data base to UI. how I wanted to implement. On page Load, drop will be filled with all available roles, with list of all check boxes(basically it will equal to the no. of links on the left side tree) below, I will select required boxes and then save. If that particular user with that role logged in, then we will load only those links which this role is having ( of course we will assign that user with the spefic role).
View 1 RepliesAllow Admin Users to Access Basic Users Accounts?
View 4 RepliesI have set up a very simple authentication page where the user enters his password and if successful authentication occurs the program allows the user to make use of the controls in the page.
I used ASP.Net Configuration to create the user and roles, SQL Membership Provider for the authentication tables and asp login controls to authenticate.
Is there any way to add users and roles once the project is deployed? Could I use the ASP.Net configuration page? and if so how?
i have create web application for school management system...bt when i run my webside...(my welcome page is defaul.aspx bt if i want to acces studentdetail.aspx then i only enter url and i get studentdetail.aspx)
View 1 Repliesi have a website having a couple of pages,i'd like to allow all users to be able to browse some pages and deny them some web pages.I know it's something to do with creating an authorization tag and adding some allow or deny user,but i have no idea how to implement it.
View 4 RepliesHow do I assign database to AccessDataSource control dynamically.
If I load aspx page by mypage.aspx?DB=100 then I want to use 100.mdb as data base
If I load aspx page by mypage.aspx?DB=200 then I want to use 200.mdb as data base
Both databases are identical except for the fact that data is different.
Here's default code - Need to replace Bold Code with equivalent of DataFile = response.querystring("DB") + ".mdb"
<asp:AccessDataSource ID="AccessDataSource1" runat="server"
DataFile="c: rims2k�00001000.mdb"
SelectCommand="SELECT * FROM [EquipmentUsage]"></asp:AccessDataSource>
I have basic login functionality implemented using SQL Server and the LoginView, LoginStatus, and LoginName controls.I have two roles defined: one for Administrators and one for Users.I have two users defined, one for each role. I would like to redirect those authenticated as users to one page and those authenticated as administrators to another. Do I need to define RoleGroups to do this? Is there a good, basic way to accomplish this? I'm not sure what to do next.
View 3 RepliesHow do I keep the pages from time out when users are logged in?
View 3 RepliesIam using masterpage and i want to use navigation menu ,but i don't want to use sitemap concept
how to work with navigation menu and assign the pages in navigation menu in master page
i have one web service how can i give access to that web service to many user(with secure method). Now i am checking url and only doing for one site. So what should i do.
View 1 RepliesI want to Transfer UserId after loggin in to everypage in app till the user gets logged out...
View 1 RepliesI need to create different page views for different types of users. I already asked that here: How to create pages with different permissions' views And even though Aldeel's answer works, it does not seem the best solution for me. I'll explain why. I need to show different views but it's not only like that. Each user can have access to different parts of the page.
Imagine a page 'X' with this structure
Field A
Field B
Field C
Field D
When user U1 from group G1 visit page X the system checks the DB for that group's permission on page X. User U1 can see Field A and Field B, but only edit Field A. User U2 that is set to no group visits page X. The system checks for his permissions on page X. User U2 can see and edit all fields. When user U3 from group G2 visit page X the system checks the DB for that group's permission on page X. User U3 can see Field C and Field D, but can not edit any.
I coudn't find a way to do that instead of filling ViewData with lots of data about that specific user's permission. In my example there are only 4 fields, but in my current project I have no screen with less than 20 fields. So I guess you can see how ugly and not productive that is. The idea is similar to a social network, as I said (facebook example). When a user visiting UserX's page can only see what UserX has allowed him to.
I have a folder within my website called 'ProtectedPages' which contains pages which users can only see if they have logged in (MyAccount.aspx etc). If they bookmark that page and try to go to it without logging-in, they are immediately bounced to my login page.However, if I have text files, images etc. in there, then it seems users can get to these fine without the need to login - all they need is the URL. For example, I could send the URL http://mysite.com/ProtectedPages/MyAccount.aspx to a friend and he wouldn't be able to access it until he had logged in. However, I could send himttp://mysite.com/ProtectedPages/ATextDocument.txt and it would show it to him without any problems.How would I go about protecting ALL files within this folder? I have a web.config file within the ProtectedPages folder which just has this information in it (I don't want TrainingAdministrator's to have access to that folder at all)
<?xml version="1.0" encoding="utf-8"?>
<configuration>
<system.web>
[code]...