堆栈内存溢出
  简体   繁体   English

ASP.NET MVC身份。 限制认证的逻辑

[英]Asp.net mvc Identity. Logic of limiting authentications

 原文  2017-06-09 09:04:39       c#/ asp.net/ asp.net-mvc/ asp.net-mvc-4/ asp.net-identity

问题描述

Suppose, I have two models: 假设我有两个模型: 

class Customer {
    public GUID CustomerID { get; set; }
    public IEnumerable<User> SubscribedUsers { get; set; }
    //other fields
}

and 

class User {
    public GUID UserID { get; set; }
    //other fields
}

I want to implement BL with ASP.NET Identity for limitation of auhorization: if user is in SubscribedUsers - Access is granted else - denied. 我想用ASP.NET身份实现BL,以限制权限:如果用户在SubscribedUsers中-授予访问权限-拒绝访问。

I dont ask you to implement it for me. 我不要求您为我实施它。 Just give me best practice how can I do it and where I can weite this wrap of business logic... 只要给我最佳实践,我该怎么做以及在哪里可以迭代这套业务逻辑...

I think I have to implement custom OAuthAuthorizationServerProvider , have I? 我想我必须实现自定义OAuthAuthorizationServerProvider ,对吗?

1 个解决方案

解决方案1
 0  2017-06-09 11:36:44

I think the easiest way is, to add a new Claim ( https://docs.microsoft.com/en-us/aspnet/core/security/authorization/claims ). 我认为最简单的方法是添加一个新的Claim( https://docs.microsoft.com/en-us/aspnet/core/security/authorization/claims )。 Call it SubscribedOnly and add this claim to the specified user ( How to add claims in ASP.NET Identity ) 将其称为SubscribedOnly并将此声明添加到指定的用户( 如何在ASP.NET Identity中添加声明

In general I would try to find a built-in possibility to solve youre problem, before you try to overwrite something. 通常,在尝试覆盖某些内容之前,我会尝试找到一种内置的方法来解决您的问题。

The authorization-logic will be placed in your controller. 授权逻辑将放置在您的控制器中。 You can put this attribute [Authorize] on top of your Controller (which means that every ActionMethod is only available for logged in users) or on top of every ActionMethod which access should be secured. 您可以将此属性[Authorize]设置在Controller之上(这意味着每个ActionMethod仅适用于已登录的用户)或应确保访问权限的每个ActionMethod之上。

Working with this attribute is very easy and straightforward for a wide range of implementations!! 使用此属性非常容易,直接,适用于各种实现!!

If you´re looking for a good ressource to understand identity or to customize it, i´ll recommend John Attens blog: http://johnatten.com/?s=identity 如果您正在寻找了解身份或自定义身份的良好资源,我将推荐John Attens博客: http ://johnatten.com/?s=identity

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 ASP.NET MVC 5 - 身份。 如何获取当前的ApplicationUser - ASP.NET MVC 5 - Identity. How to get current ApplicationUser 自定义实现的Asp.net IDentity。 GetExternalAuthenticationTypes()返回0提供程序 - Custom Implementation of Asp.net IDentity. GetExternalAuthenticationTypes() Returning 0 Providers ASP.NET表单身份验证 - ASP.NET Forms authentications ASP.NET核心身份。 使用ApplicationDbContext和UserManager。 他们是否分享背景? - ASP.NET Core Identity. Using ApplicationDbContext and UserManager. Do they share the context? MVC 5身份。 用户角色 - MVC 5 Identity. Roles for User 在Asp.net Identity MVC 5中创建角色 - Creating Roles in Asp.net Identity MVC 5 ASP.NET MVC身份关系 - ASP.NET MVC Identity Relationship ASP.Net MVC替代登录身份 - ASP.Net MVC Alternative Login to identity Asp.Net MVC核心和身份3 - Asp.Net MVC Core and Identity 3 具有多个数据库的MVC 5 Asp.Net身份 - MVC 5 Asp.Net Identity with multiple databases
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM