Last post Aug 26, 2008 11:30 AM by davidebb
Aug 26, 2008 07:26 AM|mkamoski|LINK
I need to figure out a generic way to apply action-level-security based on aspnet_Roles.
I think that can be done in the templates, showing/hiding screen elements based on run-time security checks.
The operative goal is to provide security such as "RoleA can create/read/update/delete, RoleB can create/read/update, RoleC can create/read, RoleD can read, etc, where the scenario might be either "User1 can belong to exactly one group" or "User1 can belong
to one or more groups where permissions are hierarchical such that highest permission wins".
What do you think?
-- Mark Kamoski
Aug 26, 2008 11:30 AM|davidebb|LINK
Steve Naughton has written a great series of blog posts on doing something like this. Check it out