ASP.NET MVC3 Role and Permission Management -> With Runtime Permission Assignment
What options are strategies are available to allow permissions on MVC Controllers/Views/Actions to be defined outside of attributes (as in a database) and evaluated and applied at runtime? A custom Authorize attribute is one possibility to achieve this: public class MyAuthorizeAttribute : AuthorizeAttribute { protected override bool AuthorizeCore(HttpContextBase httpContext) { Roles = … go ahead … Read more