Security

Re: User.isInrole problem

GillouX — Tue, 12 Feb 2008 08:51:36 GMT

My mistake,

this code is not working, I figured it out now that I had already changed sg else.

This

Sub Application_AuthenticateRequest(ByVal sender As Object, ByVal e As EventArgs)

If Request.IsAuthenticated() Then

'create an array of roles for the current user

'these would most likely be dynamically read

' from the data store for each user.

Dim arrRoles() As String = {"Admin"}

'Add our Principal to the current context

'Thread.CurrentPrincipal = New GenericPrincipal(Context.User.Identity, arrRoles)

HttpContext.Current.User = New System.Security.Principal.GenericPrincipal(Context.User.Identity, arrRoles)

End If

End Sub

in the Global.asax made it working.

Can sy ask me why it has to be in the global.asax ?

I tried this use this swelse and I still get false

Re: User.isInrole problem

GillouX — Mon, 11 Feb 2008 20:07:21 GMT

This code made the trick

Dim tkt As FormsAuthenticationTicket
            Dim cookiestr As String
            Dim ck As HttpCookie

            tkt = New FormsAuthenticationTicket(1, txtUserName.Value, DateTime.Now(), _
      DateTime.Now.AddMinutes(30), False, "your custom data")
            cookiestr = FormsAuthentication.Encrypt(tkt)
            ck = New HttpCookie(FormsAuthentication.FormsCookieName(), cookiestr)

            ck.Path = FormsAuthentication.FormsCookiePath()
            Response.Cookies.Add(ck)

Thx anyway

Re: User.isInrole problem

GillouX — Mon, 11 Feb 2008 12:47:59 GMT

I checked the last link and it's strange what it says there

context is valid for a single request (page render). when you redirect to a
new page, that page gets a new context. you need to store your
authentication info somewhere that the client will send to you on each
request. (say a cookie or url munging)

why this would keep the name and not the userinrole property so ?

Re: User.isInrole problem

dharnendra — Mon, 11 Feb 2008 12:06:13 GMT

Hi refer the below link

http://www.velocityreviews.com/forums/t221583-contextuser-problem.html

Re: User.isInrole problem

MarcinM — Mon, 11 Feb 2008 11:57:12 GMT

Try checking role with domain prefix, ex: User.IsInRole(@"domain\user").

If that fails try this code:

string[] members = Roles.GetRolesForUser();
            foreach (string role in members)
            {
                Response.Write("\n" + role + "/<br />");
            }

... and dont forget enable roleManager in web.config:

<system.web>
<roleManager enabled="true" defaultProvider="AspNetWindowsTokenRoleProvider"/>
</systen.web>

User.isInrole problem

GillouX — Mon, 11 Feb 2008 10:37:14 GMT

Hello

I have a problem using the user.isinrole ; it returns false any time.

It's really strange because when I set my genericprincipal :

Dim objIdentity As GenericIdentity = New GenericIdentity(_username)
        Dim objPrincipal As GenericPrincipal = New GenericPrincipal(objIdentity, _roles)
        Thread.CurrentPrincipal = objPrincipal
        HttpContext.Current.User = objPrincipal

on debug if I make user.isinrole("Admin"), I get true

but on the on load of another page, I get false however I can get still my User.identiy.name correctly

Why I'm losing this property ?

Thx

GillouX