堆栈内存溢出
  简体   繁体   English

MVC使用静态设置类中的动态角色进行授权

[英]MVC Authorize with dynamic roles from static setting class

 原文  2018-02-23 12:08:24       c#/ asp.net-mvc/ authorize-attribute

问题描述

I'm currently developing an app that needs to be used by multiple customers, This means that i have to change the roles in my authorize tags between each publish of the application. 我目前正在开发一个需要由多个客户使用的应用程序,这意味着我必须在每次应用程序发布之间更改我的授权标签中的角色。

Currently I'm storing customer specific data in a static settings class 目前,我正在静态设置类中存储客户特定的数据 

public abstract class Settings
{
    public virtual string ConnectionString { get; internal set; } = "";
    public virtual string SharepointMail { get; internal set; } = "";
    public virtual string SharepointPassword { get; internal set; } = "";
    public virtual string SharepointSite { get; internal set; } = "";
    public virtual string SharepointDocumentLibrary { get; internal set; } = "";
    public virtual int ProjectId { get; internal set; }
    public virtual string SuperUserRole { get; internal set; }
    public virtual string UserRole { get; internal set; } = "";
    public virtual string ContributorRole { get; internal set; } = "";


    private static Settings _instance;
    public static Settings Instance
    {
        get
        {
            if (_instance != null)
                return _instance;

  #if DEBUG
            return _instance = new DebugSettings();
  #elif TCOTEST
            return _instance = new TcoTestSettings();
  #elif TCORELEASE
            return _instance = new TcoReleaseSettings();
  #endif
        }
    }
}

I would like to be able to set the superuserrole for each configuration, but the property needs to be constant to be used as an authorize attribute. 我希望能够为每个配置设置超级用户角色,但是该属性需要保持恒定才能用作授权属性。

How do i go about this? 我该怎么办?

1 个解决方案

解决方案1
 1 已采纳  2018-02-23 14:43:58

I ended up creating a custom authorize attribute 我最终创建了一个自定义授权属性 

public class AuthorizeRoleAttribute : AuthorizeAttribute
{
    public string AccessRole { get; set; }

    protected override bool AuthorizeCore(HttpContextBase httpContext)
    {
        var isAuthorized = base.AuthorizeCore(httpContext);
        if (!isAuthorized)
        {
            return false;
        }
        switch (AccessRole)
        {
            case "SuperUser":
                return httpContext.User.IsInRole(Settings.Instance.SuperUserRole);
            case "User":
                return httpContext.User.IsInRole(Settings.Instance.UserRole) || httpContext.User.IsInRole(Settings.Instance.SuperUserRole);
            case "Any":
                return httpContext.User.IsInRole(Settings.Instance.ContributorRole) || httpContext.User.IsInRole(Settings.Instance.UserRole) || httpContext.User.IsInRole(Settings.Instance.SuperUserRole);
            default:
                return false;
        }
    }
}

Which i can then use like this: 然后我可以这样使用: 

[AuthorizeRole(AccessRole = "Any")]

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 为MVC3设置自定义授权角色 - Setting up custom Authorize roles for MVC3 从Active Directory进行身份验证,但在MVC中从SQL数据库授权角色 - Authenticate from Active Directory but Authorize Roles from SQL Database in MVC 从web.config授权Roles MVC Web - Authorize Roles MVC web from web.config 授权属性中的角色无法按预期在MVC 4中正常工作 - Roles in Authorize Attribute does not work as expected in MVC 4 授权帮助(角色=)] MVC 3 Windows 身份验证 - Help with Authorize(Roles=)] MVC 3 Windows Authentication ASP.NET MVC授权具有许多角色的用户 - ASP.NET MVC Authorize user with many roles Asp.Net MVC C#[Authorize(Roles“”)]不起作用 - Asp.Net MVC C# [Authorize(Roles“”)] not working 如何从辅助类MVC5分配角色 - How to assign roles from helper class,MVC5 如何将动态变量传递到asp.net mvc中的authorize属性类? - How to pass a dynamic variable into the authorize attribute class in asp.net mvc? MVC5 ASP Identity动态授权属性 - MVC5 ASP Identity dynamic Authorize attribute
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM