Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Role Based Security

Status
Not open for further replies.
Stunner01225

Stunner01225

Technical User
Mar 13, 2002
150
GB
I have just spent two days setting up role based security in for my site and it works, but I have a small problem.
In my system I have four levels of user and I am handling the permissions through the web.config file. When a user logs in and then tries to load a page they don't have the right permission level it bumps them back to the login page. I need to find some way so if a read-only member loads an admin screen the login page they get pushed back to says something like admin only. Anybody have any ideas?
 
Sort by date Sort by votes
Yes, you need to set the role that the member is in, but the trick seems to be preserving the role membership data...

I found a very good video on how to set up Role based security on the MS site (in webseminars)

You can find it...


check out
In Level3 Custom Authentication and Authorization in ASP.NET
 
Upvote 0 Downvote
Thank you for your post, but unfortunately I cannot access that resource from work (don’t ask bleeding techs). I have set up all the role-based security and it all works my problem is this.
I have three pages A B C and we will say two users X Y. X can see ABC and Y can see AB and everyone can see A. When Y tries to view B they have to enter a password once passed they then get to see B. If Y tries to view C then they get taken to the login page once passed the .net security then decides that they cannot see C so it takes them back to the login page.
I know this will confuse my users because they got their login right but they have the wrong permissions and they won’t understand.
I am going to try and set something in the session, but if anyone else has had this problem and knows a nice solution then please tell me.

Cheers
 
Upvote 0 Downvote
How I solved it.
After a successful login I set session variable. The time out of my security and session is the same. In the session variable is a string saying “To view the page you must have a permission level above” and then the users level.
When my login page is loaded I set a labels text to the contents of the session variable. Usually it is empty but if not the message is displayed.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

G12Consult
  • Locked
  • Question
Different landing pages for different roles
Replies
0
Views
333
G12Consult
G12Consult
engsalah2018
  • Locked
  • Question
How to get label text from table reference on database based on TableName and FieldName
Replies
2
Views
336
jbenson001
jbenson001
dvannoy
  • Locked
  • Question
Change Grid Cell based on date
Replies
3
Views
87
dvannoy
dvannoy
moabiker31
  • Locked
  • Question
Role service
Replies
2
Views
63
moabiker31
moabiker31
michael0914
  • Locked
  • Question
Swap in a submenu based on a main menu click
Replies
0
Views
30
michael0914
michael0914

Part and Inventory Search

Sponsor

Back
Top