I have an application that has a backoffice. This backoffice was isolated with the use of roles like this:
<location path="backoffice">
<system.web>
<authorization>
<allow roles="admin"/>
<deny users="*"/>
</authorization>
</system.web>
</location>
But now we have another type of role that needs access. The companyadmin role.
Can I just say?:
<location path="backoffice">
<system.web>
<authorization>
<allow roles="admin,companyadmin"/>
<deny users="*"/>
</authorization>
</system.web>
</location>
Yes, exactly so (assuming you properly authenticated your users, and set their roles accordingly).
Check the MSDN article: https://learn.microsoft.com/en-us/previous-versions/do.net.netframework-1.1/8d82143t(v=vs.71)
yes, you can add n roles like that.
If you prefer, you can also:
<allow roles="admin"/>
<allow roles="admin1"/>
<deny users="*"/>
Yes, roles, users and verbs takes comma separated values.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.