Thread: How to Implementing Role Based Security in ASP.NET
View Single Post
  #8 (permalink)  
Old 03-31-2008, 10:42 PM
S.Vinothkumar S.Vinothkumar is offline
D-Web Genius
  
Join Date: May 2007
Posts: 1,061
S.Vinothkumar is on a distinguished road
Smile Re: How to Implementing Role Based Security in ASP.NET
Role based security and Windows Authentication

When you use Windows authentication to authenticate a user, you also have roles for that user based on its Windows group. For example, a user User1 might belong to group Administrators and the same role can be used in ASP.NET applications. You can check whether a user belongs to a particular role or not you need to write something like this:
Code:
if(User.IsInRole("BUILTIN\Administrators")
{
   //display all options
}
else
{
   //display limited options
}
Here, the IsInRole() method is used to check whether a given user has a given role. Note how we used BUILTIN for local users. If you are authenticating domain users you may write something like MYDOMAIN\Administrators. Also, note that here we didn't created any identity or principal object ourselves. Windows and ASP.NET automatically did that for us.
__________________
S.VinothkumaR
Behind me is infinite power,
Before me is Endless Possibility,
Around me is Boundless Opportunity,
Why should I fear!
Reply With Quote