ASP.NET MVC3 Role and Permission Management -> With Runtime Permission Assignment

by

What options are strategies are available to allow permissions on MVC
Controllers/Views/Actions to be defined outside of attributes (as in a
database) and evaluated and applied at runtime?

A custom Authorize attribute is one possibility to achieve this:

public class MyAuthorizeAttribute : AuthorizeAttribute
{
    protected override bool AuthorizeCore(HttpContextBase httpContext)
    {
        Roles = ... go ahead and fetch those roles dynamically from wherever they are stored
        return base.AuthorizeCore(httpContext);
    }
}

and then:

[MyAuthorize]
public ActionResult Foo()
{
    return View();
}

More Related Contents:

  1. Injecting content into specific sections from a partial view ASP.NET MVC 3 with Razor View Engine
  2. How to assign Profile values?
  3. include antiforgerytoken in ajax post ASP.NET MVC
  4. How to render a DateTime in a specific format in ASP.NET MVC 3?
  5. Is it possible to access MVC Views located in another project?
  6. mvc uppercase Model vs lowercase model
  7. Infinite URL Parameters for ASP.NET MVC Route
  8. Get DisplayName Attribute without using LabelFor Helper in asp.net MVC
  9. double escape sequence inside a url : The request filtering module is configured to deny a request that contains a double escape sequence
  10. Adding sub-directory to “View/Shared” folder in ASP.Net MVC and calling the view
  11. ViewModel’s list is null in action
  12. IValidatableObject Validate method firing when DataAnnotations fails
  13. A potentially dangerous Request.Form value was detected from the client
  14. ASP.NET MVC – Set custom IIdentity or IPrincipal
  15. Returning binary file from controller in ASP.NET Web API
  16. Routing for custom ASP.NET MVC 404 Error page
  17. How to retrieve form values from HTTPPOST, dictionary or?
  18. How and where to call Database.EnsureCreated and Database.Migrate?
  19. ASP.NET authentication login and logout with browser back button
  20. IIS URL Rewriting vs URL Routing
  21. MemoryCache Empty : Returns null after being set
  22. How to warm up an ASP.NET MVC application on IIS 7.5?
  23. How do you avoid XSS vulnerabilities in ASP.Net (MVC)?
  24. Display a view from another controller in ASP.NET MVC
  25. Log4net does not write the log in the log file
  26. How to return raw string with ApiController?
  27. Serving favicon.ico in ASP.NET MVC
  28. ASP.NET MVC ViewModel Pattern
  29. ASP.NET MVC Performance
  30. ASP.NET session state and multiple worker processes

Leave a Comment