stackoom
  简体   繁体   中英

How to achieve authorize the pages in MEAN stack web application?

 原文  2017-03-01 13:19:49       node.js/ mongodb/ mongoose/ mean-stack

Question

I am being writing the schema for the Application in mongodb. Usually in asp.net with Sql, We have assigned the pages/UIs to each roles which means role have the permission (view/edit) to access the page or not. When the role login to the Application he can only view/Edit in assigned pages to that role, un assigned pages will not be shown for that role.

In c# i have restrict the role with write the code in pre_init event. In MEAN Stack application, the same I am trying with the mongoDB. 

var mongoose = require('mongoose'),
    Schema = mongoose.Schema;    


var rolesSchema = new Schema({
    role: { name: String },
    accessPage: { pagename: String, view: true, Edit: true }
});


var roles= mongoose.model('roles', rolesSchema );

I'm new to MEAN stack, How we can achieve the authorisation related stuffs in MEAN stack web application.

2 answers

solution1
 1 ACCPTED  2017-03-01 13:47:21

I think what you want is the level of authorization based on the role of the user, you may want to look at passport js . With passport js you will be able to handle authorization, and you can use node middlewares to handle authorization based on user's role.

Try to store user's role in req.user . Read passport documentation to know more about req.user

Sample middleware: 

var isAdmin = function (req,res,next){
      if(req.user && req.user.role==='Admin')
          next();
     else{
         return;
    }
}

Use it in your node routes 

router.post('/someRoute', isAdmin, function (req,res,next){
    //Handle your route here
});

Hope this helps you get some idea on how to handle authorization based on role.

solution2
 0  2017-03-01 13:34:51

The simplest way to do it would be with Passport:

Passport is authentication middleware for Node.js. Extremely flexible and modular, Passport can be unobtrusively dropped in to any Express-based web application. A comprehensive set of strategies support authentication using a username and password, Facebook, Twitter, and more.

In the MEAN stack you're using Express, which supports any connect-style middleware like Passport.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Hosting my MEAN stack web app on github pages Can not link to other HTML pages in my MEAN Stack Application Deploying my web application built using MEAN stack on the web How to enable CORS in MEAN STACK web app? How to deploy MEAN Stack to web host How to handle live messaging in Mean stack application? how to determine logged in user in a mean stack application Deploy MEAN stack application API using mean stack application User Authentication on MEAN stack application
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM