堆栈内存溢出
  简体   繁体   English

在ASP.NET 5 Identity 3.0(无EF)中创建自定义角色处理

[英]Create custom role handling in ASP.NET 5 Identity 3.0 (without EF)

 原文  2015-12-09 14:44:56       asp.net/ asp.net-mvc/ asp.net-core/ asp.net-core-mvc/ asp.net-identity-3

问题描述

I have successfully created a simple MVC 6 application which uses my own ApplicationUser, an ApplicationUserStore (implementing IUserStore and IUserPasswordStore) and ApplicationUserManager (extending UserManager). 我已经成功创建了一个简单的MVC 6应用程序,该应用程序使用了我自己的ApplicationUser,一个ApplicationUserStore(实现IUserStore和IUserPasswordStore)和ApplicationUserManager(扩展了UserManager)。 The login does now work perfectly. 现在登录可以正常工作。 Now I do want to extend my project to support annotations in my controllers like the following: 现在,我确实想扩展项目以在控制器中支持注释,如下所示: 

[Authorize(Roles = "TestRole")]
public IActionResult Trips()
{
  ...
}

Therefore I have also created my own ApplicationRole, ApplicationRoleManager, ApplicationRoleStore and registered them in my Startup: 因此,我还创建了自己的ApplicationRole,ApplicationRoleManager,ApplicationRoleStore并将它们注册到我的Startup中: 

    services.AddIdentity<ApplicationUser, ApplicationRole>(config =>
    {
        config.User.RequireUniqueEmail = true;
        config.Password.RequiredLength = 8;
        config.Cookies.ApplicationCookie.LoginPath = "/Auth/Login";
        config.Cookies.ApplicationCookie.AutomaticAuthenticate = true;
    }).AddUserStore<ApplicationUserStore<ApplicationUser>>()
    .AddRoleStore<ApplicationRoleStore<ApplicationRole>>()
    .AddUserManager<ApplicationUserManager>()
    .AddRoleManager<ApplicationRoleManager>();

My problem is now that the annotation does not work at all. 我的问题是,注释根本不起作用。 Actually I hoped that somehow the Roles method (from IQueryableRoleStore) in my ApplicationRoleStore would be fired. 实际上,我希望可以触发我的ApplicationRoleStore中的Roles方法(来自IQueryableRoleStore)。

Do I miss somewhere I binding or do I have a complete wrong idea of the identity/role concept? 我会错过绑定的地方还是对身份/角色概念有完全错误的想法?

1 个解决方案

解决方案1
 2  2015-12-09 15:57:05

Authorize attribute: 授权属性: 

[Authorize(Roles = "TestRole")]
public IActionResult Trips()
{
  ...
}

is not going to invoke any identity stuff. 不会调用任何身份信息。 It is only going to check if the current user is in the role "TestRole" and only allow access if the user is in the role. 它将仅检查当前用户是否具有“ TestRole”角色,并且仅当该用户具有该角色时才允许访问。 This will be a check against the role cookie. 这将是对角色Cookie的检查。

You still need to build your own UI for managing role membership, adding removing users from roles in order to get that role into a user's cookie. 您仍然需要构建自己的UI来管理角色成员身份,并添加从角色中删除用户的功能,以便将该角色添加到用户的Cookie中。

If you need more ideas I have a project here that has role management implemented as well as Identity without entity framework 如果您需要更多想法,我在这里有一个项目,该项目已实现角色管理以及无需实体框架的身份

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 具有自定义角色的asp.net身份 - asp.net identity with custom role ASP.NET Core 3.0 将身份用户分配给自定义 model - ASP.NET Core 3.0 Assign Identity User to custom model 在 asp.net core 3.0 中为角色 SecurityStamp 创建 ClaimsIdentityOptions - Create ClaimsIdentityOptions for role SecurityStamp in asp.net core 3.0 ASP.NET标识 - 未调用自定义角色验证 - ASP.NET Identity - Custom role validation not being called ASP.NET身份数据库第一个自定义用户和角色 - ASP.NET Identity Database First custom user and role 向用户ASP.NET身份添加自定义角色 - Adding custom role to user ASP.NET Identity 如何在ASP.Net身份中创建角色和用户? - How to create Role and User in ASP.Net identity? 如何使用 ASP.Net Identity 将自定义验证应用于 ASP.NET MVC5 中的角色提供程序? - How to apply custom validations into role providers in ASP.NET MVC5 with ASP.Net Identity? 自定义Asp.Net Identity 3.0 - Customizing Asp.Net Identity 3.0 Identity 2.0 中的 ASP.NET 角色管理 - ASp.net Role management in Identity 2.0
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM