1. 首頁
  2. 問答
  3. 信息,如果requiment角色

信息,如果requiment角色

2014-09-10 68 views
0

我有一個控制器,它要求一個角色名「管理員」:信息,如果requiment角色

它的控制器的一部分:

[Authorize(Roles="Admin")] 
public class RolesAdminController : Controller 
{ 
    public RolesAdminController() 
    { 
    } 

    public RolesAdminController(ApplicationUserManager userManager, 
     ApplicationRoleManager roleManager) 
    { 
     UserManager = userManager; 
     RoleManager = roleManager; 
    } 

    private ApplicationUserManager _userManager; 
    public ApplicationUserManager UserManager 
    { 
     get 
     { 
      return _userManager ?? HttpContext.GetOwinContext().GetUserManager<ApplicationUserManager>(); 
     } 
     set 
     { 
      _userManager = value; 
     } 
    } 

    private ApplicationRoleManager _roleManager; 
    public ApplicationRoleManager RoleManager 
    { 
     get 
     { 
      return _roleManager ?? HttpContext.GetOwinContext().Get<ApplicationRoleManager>(); 
     } 
     private set 
     { 
      _roleManager = value; 
     } 
    }

和定義的ApplicationRoleManager其繼承RoleManager

public class ApplicationRoleManager : RoleManager<IdentityRole> 
{ 
    public ApplicationRoleManager(IRoleStore<IdentityRole,string> roleStore) 
     : base(roleStore) 
    { 
    } 

    public static ApplicationRoleManager Create(IdentityFactoryOptions<ApplicationRoleManager> options, IOwinContext context) 
    { 
     return new ApplicationRoleManager(new RoleStore<IdentityRole>(context.Get<ApplicationDbContext>())); 
    } 
}

如果用戶沒有rolename Admin然後(我不知道如何)被移動到AccountController和方法: public ActionResult Login(string returnUrl) 它的定義:

[HttpGet] 
    [AllowAnonymous] 
    public ActionResult Login(string returnUrl) 
    { 
     ViewBag.ReturnUrl = returnUrl; 
     return View(); 
    }

現在我想推動信息,以這種方法,如果用戶不是管理員,並給信息「嘿!你不必存取權限頁面的這一部分,請登錄管理員帳戶「然後我擴展了這個方法,這種形式:

public ActionResult Login(string returnUrl) 
    { 

     if (returnUrl != null && 
      returnUrl.Contains("Admin") && 
      Request.IsAuthenticated && 
      !User.IsInRole("Admin")) 
     { 
      if (Request.IsAuthenticated) 
       ViewBag.Info = "Hey! You don't have acces to this part of page, please Login to Admin account"; 
      else 
       TempData["Info"] = "Hey! You don't have acces to this part of page, please Login to Admin account"; 
      return RedirectToAction("Index", "Home"); 
     } 
     ViewBag.ReturnUrl = returnUrl; 
     return View(); 
    }

在我的方式,我知道,所有的控制器,它具有名」 admin 「,fe RolesAdminController,UserAdminController要求Roles =」Admin「,但它不是最酷的方式:/

它工作正常,但是如果用戶(或訪客)沒有訪問權限到控制器?

來源

2014-09-10 W92

回答

1

我搜索並找到答案:簡單地創建自定義授權類。它很好地解釋了這個視頻: https://www.youtube.com/watch?feature=player_embedded&v=BsxUsyMSGeA 或在這裏: https://www.youtube.com/watch?v=vPyjmuT-lG4&list=PL5MZid1lr-vLd5ec3m1__Xn_1zvyjhOcD&index=26

或嘗試問叔叔谷歌的 「創建自定義authorizeAttribute」

例如:

public class RoleAttribute : AuthorizeAttribute 
    { 
     public string UserRole { get; set; } 
     protected override bool AuthorizeCore(HttpContextBase httpContext) 
     { 
      return (httpContext.Request.IsAuthenticated && httpContext.User.IsInRole(UserRole)); 
     } 

     //if AuthorizeCore return false 
     protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext) 
     { 
      //add to session 
      filterContext.RequestContext.HttpContext.Session["aa"] = "Hey! You haven't access!"; 
      string action = ""; 
      string controller = ""; 
      //get current action 
      if (filterContext.Controller.ControllerContext.RouteData.Values["action"] != null) 
      { 
       action = filterContext.Controller.ControllerContext.RouteData.Values["action"].ToString(); 
      } 
      //get current controller 
      if (filterContext.Controller.ControllerContext.RouteData.Values["controller"] != null) 
      { 
       controller = filterContext.Controller.ControllerContext.RouteData.Values["controller"].ToString(); 
      } 
      //add some values to temp data 
      filterContext.Controller.TempData.Add("RoleErrors", "Hey! You don't have access!"); 

      //redirect to register method and for example add some info - returnUrl 
      filterContext.Result = new RedirectToRouteResult(
       new System.Web.Routing.RouteValueDictionary(
        new 
        { 
         controller = "Account", 
         action = "Register", 
         returnUrl = string.Format("{0}/{1}",controller,action) 
        }) 
       ); 
     } 
    }

然後在某些控制器,你可以使用它作爲:

[Role(UserRole = "YourRole")] 
public class MyController : Controller 
{ 
    ... 
}

並且在AccountController中你會被推入方法:

public ActionResult Register(string returnUrl) 
{ 
    ... 
    ViewBag.Error = TempData["RoleErrors"] as string; 
    return View(); 
}

和視圖():

@if(ViewBag.Error != null) 
{ 
    <p>@ViewBag.Error</p> 
}

來源

2014-09-10 17:59:06 W92

相關問題

 相關問題