stackoom
  简体   繁体   中英

webapi odata, restrict access to entities

 原文  2014-07-17 04:28:45       c#/ asp.net-mvc/ odata/ asp.net-web-api/ webapp2

Question

For example, we have Car object. 

public class Car 
{
    public string Name {get; set;}
    public City City {get; set;}
}

public class City
{
    public string Name {get; set;}
}

And, on client we make oData request api/Cars which return all cars. But, I want to restrict set of records programmaticaly. For example, current user can retrieves only Cars from New York city. What is best way to do this?

And general question, how to restrict access to entities or properties for different users?

1 answers

solution1
 0  2014-07-18 01:32:20

Try modifying the "Get" method which returns the collection of cars in the controller class to restrict the returned set according to the received Request.

You can save and read cookies to store the information which is used to do this restriction.

Check this for how to use cookies in webapi:

http://www.asp.net/web-api/overview/working-with-http/http-cookies

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Restrict access to specific relations OData .NET WebAPI Include related entities with WebAPI OData request WebApi OData only able to POST and GET entities WebAPI OData include related entities without using $expand option Restrict access to data in OData $expand operation How to restrict the access to DB resources in WebAPI Asp.Net WebApi OData v4 - Saving Entity along with related entities WebApi oData returning 406 WebAPI OData Datetime serialization OData WebAPI 2 Complex Authorization
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM