stackoom
  简体   繁体   中英

Best practice to check data of a user before logging in

 原文  2013-06-24 06:11:53       c#/ database/ asp.net-mvc-4/ security

Question

There is a table that keeps a user's details. An admin can lock this user by setting the column called locked. Once the user is locked they cannot login. I am using The WebSecurity.Login to login. As of now I am letting the user to login, then it checks if they are not locked and if they are instead of home page they are redirected to locked page.

What is the best practice that I can use so that the user doesnt gets logged in, check the field and gets redirected. This is in MVC 4

Thanks in advance...

1 answers

solution1
 1 ACCPTED  2013-06-24 06:14:51

Maybe I misunderstand you.. but currently you have something like this: 

Membership.LoginUser(userName, password);

if (CurrentUser.IsLocked) {
    RedirectUser();
}

..can you not just replace it with something like this?: 

var user = Membership.GetUser(userName, password);
if (user.IsLocked) {
    Redirect();
}
else {
    Membership.LoginUser(user);
}

... ?

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Best Practice to access Data related to another User Multiple services logging - best practice Best practice to gather data across multiple fragments before db write What is the best practice for caching user data in asp.net EF Core 2.0 - Filtering data by user best practice Logging multiple instance application best practice? Best way to Check if User already exist before Inserting to DB Check NLog minlevel before logging? User Content Directories Best Practice Best practice: User Identites as parameters?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM