堆栈内存溢出
  简体   繁体   English

如何在asp.net成员资格中设置嵌套角色

[英]How to set nested roles in asp.net Membership

 原文  2013-07-22 12:21:36       c#/ asp.net/ asp.net-membership/ asp.net-roles

问题描述

I want to set some of the permission for the particular depending of Role of current user. 我想根据当前用户的角色来设置一些特定权限。 For example: I have to role 3 roles let it be 例如:我必须扮演3个角色

  1. Super Admin 超级管理员
  2. Admin 管理员
  3. Supervisor 主管

If I set permission for supervisor, super admin and admin should automatically get the permission. 如果我为主管设置了权限,则超级管理员和管理员应自动获得该权限。 If I set for Admin then super admin should get permission but supervisor should not able to access those pages. 如果我设置为管理员,那么超级管理员应获得许可,但主管不应访问那些页面。

Please help with the solution 请协助解决

NOTE: I don't want to give multiple role to particular user 注意:我不想给特定用户多个角色

2 个解决方案

解决方案1
 0  2013-07-22 13:53:24

There is very effective solution by using "Authorization Manager". 使用“授权管理器”有一个非常有效的解决方案。

It provides a flexible framework for integrating role-based access control into applications. 它提供了一个灵活的框架,用于将基于角色的访问控制集成到应用程序中。 It enables administrators who use those applications to provide access through assigned user roles that relate to job functions. 它使使用这些应用程序的管理员可以通过与工作功能相关的分配用户角色来提供访问权限。

Authorization Manager applications store authorization policy in the form of authorization stores that are stored in Active Directory Domain Services (AD DS), Active Directory Lightweight Directory Services (AD LDS), XML files, or Microsoft SQL Server databases. 授权管理器应用程序以授权存储的形式存储授权策略,该授权存储存储在Active Directory域服务(AD DS),Active Directory轻型目录服务(AD LDS),XML文件或Microsoft SQL Server数据库中。 These polices are then applied at run time. 然后在运行时应用这些策略。

for more information visit http://msdn.microsoft.com/en-us/library/bb897401.aspx 有关更多信息,请访问http://msdn.microsoft.com/zh-cn/library/bb897401.aspx

解决方案2
 0  2013-07-22 20:41:57

I don't want to give multiple role to particular user. 我不想给特定用户多个角色。

You should be able to assign multiple roles to users; 您应该能够为用户分配多个角色。 it is how the role base authorization supposed to be. 这就是角色库授权应该是的方式。 A role's authentication should not depend on other roles. 角色的身份验证不应依赖于其他角色。

Please do not implement hierarchy role to role based authentication. 请不要实现基于角色的身份验证的层次结构角色。

It is not a good design practice. 这不是一个好的设计实践。 If you do not careful, they will become circular dependency, and they are very hard to debug. 如果不注意,它们将成为循环依赖项,并且很难调试。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 ASP.NET成员身份角色-事件管理 - ASP.NET membership roles - event management Asp.net会员权限和角色 - Asp.net membership permissions and roles 如何在ASP.Net成员资格中设置ProviderUserKey - How To Set the ProviderUserKey in ASP.Net Membership 如何通过自定义Asp.net页面将页面分配给成员身份和角色中的用户角色 - How to assign Pages to User Roles in Membership and Roles by Custom Asp.net Page 以编程方式将用户登录到asp.net成员资格和角色? - Programmatically log a user in to asp.net membership and roles? 是否存在ASP.NET Web窗体的现成角色/成员资格框架? - Is there a ready made roles/membership framework for ASP.NET Web Forms? DB2数据库的ASP.NET成员身份角色 - ASP.NET Membership roles with DB2 Database ASP.net 4.5成员资格和角色将用户添加到角色 - ASP.net 4.5 Membership and Roles add user to role ASP.Net成员资格:保存在不同数据库中的角色 - ASP.Net Membership: Roles saved on Different Database 如何在ASP.NET Membership中设置当前用户的电子邮件地址? - How to set the current users email address in ASP.NET Membership?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM