Last post Apr 15, 2015 09:31 AM by papasmurf61706
Apr 13, 2015 10:03 PM|papasmurf61706|LINK
I am writing a web application to replace the one we are currently using. I have finished most of the application and now need to integrate the authorization and administration into the mvc views and controllers. I understand how to use the "authorize" attribute
on controllers to hide views and use "is authorized" in views to show different content based on roles and users. What I need help with is the authorization setup and in app management. The app we currently use is set up so that admin can enter the "domain\username"
of an employee and assign them an authorization level (I assume a custom role). This allows us to issue assignments to the users so that they only see their assignments. I am unsure if this done through windows authentication in an intranet application, or
forms authentication in a web application. If its not windows authentication and custom roles, how do I tie-in the domain accounts to a forms authorization? If it is windows, how do I go about setting up the controller for a management view so I don't have
to manually add users to the controller. I am fairly new to mvc and just started looking into authorization, so this may be a very simple topic to explain, but my google-fu has failed me on this one. Would appreciate any help, even just a good tutorial, as
all I have found so far is on how to control access, not set up administration. Thanks
Apr 15, 2015 04:52 AM|Archer Wang|LINK
Thank you for your post. As I know, I suggest that you could set up admin by Active Directory. Please check the below tutorial.
You could create Active Directory instead of in the ASP.NET Identity database as above suggested. Besides, you may need to install the Active Directory firstly.
Hope this could be helpful to you.
Apr 15, 2015 09:31 AM|papasmurf61706|LINK
Hi Archer, thank you for the response. After viewing this link, I am still confused. I may not have been clear in my initial post, but the problem is not getting windows authentication, we have an active directory already set up. What I am seeking information
about appears to be custom roles and setting up a role provider (or possibly creating a custom role provider) that will use sql server to bind our current ad user accounts to an "application user" (much like forms authentication) but that sees the windows
authenticated user as an application user without passwords or emails. I am not sure that I am being as clear as I need to be since I am brand new to security outside of windows permissions. I came across this late last night, but am having trouble understanding
this, as I have no working knowledge of web forms (I am creating this application with asp.net mvc). I am trying to sort this out, but any help would be appreciated.
also found this, but have not found how to link the users in here to a windows authenticated user so there is no need for a secondary login.
Thanks again for your suggestion Archer.