How to create roles in ASP.NET Core and assign them to users?

by

My comment was deleted because I provided a link to a similar question I answered here. Ergo, I’ll answer it more descriptively this time. Here goes.

You could do this easily by creating a CreateRoles method in your startup class. This helps check if the roles are created, and creates the roles if they aren’t; on application startup. Like so.

private async Task CreateRoles(IServiceProvider serviceProvider)
    {
        //initializing custom roles 
        var RoleManager = serviceProvider.GetRequiredService<RoleManager<IdentityRole>>();
        var UserManager = serviceProvider.GetRequiredService<UserManager<ApplicationUser>>();
        string[] roleNames = { "Admin", "Manager", "Member" };
        IdentityResult roleResult;

        foreach (var roleName in roleNames)
        {
            var roleExist = await RoleManager.RoleExistsAsync(roleName);
            if (!roleExist)
            {
                //create the roles and seed them to the database: Question 1
                roleResult = await RoleManager.CreateAsync(new IdentityRole(roleName));
            }
        }

        //Here you could create a super user who will maintain the web app
        var poweruser = new ApplicationUser
        {

            UserName = Configuration["AppSettings:UserName"],
            Email = Configuration["AppSettings:UserEmail"],
        };
    //Ensure you have these values in your appsettings.json file
        string userPWD = Configuration["AppSettings:UserPassword"];
        var _user = await UserManager.FindByEmailAsync(Configuration["AppSettings:AdminUserEmail"]);

       if(_user == null)
       {
            var createPowerUser = await UserManager.CreateAsync(poweruser, userPWD);
            if (createPowerUser.Succeeded)
            {
                //here we tie the new user to the role
                await UserManager.AddToRoleAsync(poweruser, "Admin");

            }
       }
    }

and then you could call the CreateRoles(serviceProvider).Wait(); method from the Configure method in the Startup class.
ensure you have IServiceProvider as a parameter in the Configure class.

Using role-based authorization in a controller to filter user access: Question 2

You can do this easily, like so.

[Authorize(Roles="Manager")]
public class ManageController : Controller
{
   //....
}

You can also use role-based authorization in the action method like so. Assign multiple roles, if you will

[Authorize(Roles="Admin, Manager")]
public IActionResult Index()
{
/*
 .....
 */ 
}

While this works fine, for a much better practice, you might want to read about using policy based role checks. You can find it on the ASP.NET core documentation here, or this article I wrote about it here

More Related Contents:

  1. How do I get the contents of a JSON file I added in the StartUp method to use it in one of my actions?
  2. How do I setup multiple auth schemes in ASP.NET Core 2.0?
  3. TempData null in asp.net core
  4. Dealing with large file uploads on ASP.NET Core 1.0
  5. An error occurred attempting to determine the process id of dotnet.exe which is hosting your application. One or more error occured
  6. Unable to resolve service for type ‘Microsoft.AspNetCore.Identity.UserManager` while attempting to activate ‘AuthController’
  7. How to get DropDownList SelectedValue in Controller in MVC
  8. prevent property from being serialized in web API
  9. How to return PDF to browser in MVC?
  10. 404 error after adding Web API to an existing MVC Web Application
  11. ASP.NET MVC Global Variables
  12. Adding your own HtmlHelper in ASP.NET MVC 3
  13. Proper JSON serialization in MVC 4
  14. An error occurred during report processing. -RLDC reporting in ASP.NET MVC
  15. Passing dynamic javascript values using Url.action()
  16. ASP.NET MVC Razor render without encoding
  17. How to make EF-Core use a Guid instead of String for its ID/Primary key
  18. Windows Authentication and add Authorization Roles through database – MVC asp.net
  19. How to get current page URL in MVC 3
  20. Assign format of DateTime with data annotations?
  21. POST string to ASP.NET Web Api application – returns null
  22. Identity in ASP.Net Core 2.1< - Customize AccountController
  23. MEF with MVC 4 or 5 – Pluggable Architecture (2014)
  24. Redirect to another page when user is not authorized in asp.net mvc3
  25. Bind Dictionary with list in viewmodel to checkboxes
  26. ASP.NET 5 MVC: unable to connect to web server ‘IIS Express’
  27. {version} wildcard in MVC4 Bundle
  28. ASP.NET – AppDomain.CurrentDomain.GetAssemblies() – Assemblies missing after AppDomain restart
  29. Opposite of [compare(” “)] data annotation in .net?
  30. Asp.Net Routing: How do I ignore multiple wildcard routes?

Leave a Comment