I want to have multiple roles and give specific roles to specific folders using Identity and webforms

Question

User-1360958501 posted

Once upon a time I was easily led through these issues with wizards and setting web.configs within folders but now with Identity and Entity Frameworks nothing seems so simple.

Can anyone point me to an example that does this completely rather just refer to it in passing.

eg: If I can have a roles of Administrator and Accounts then I want only Administrator role people to have access to BlahBlah/Admin and similarly Accounts role people to have access to BlahBlah/Accounts

Thanks in anticipation

Answer 1

User-1360958501 posted

I think I want to know can I simply apply the access rules like the web.config

At present the web.config stating 

[<authorization>
<allow users="Administrator" />
<deny users="?" />
</authorization>] 

doesn't work or at least doesn't differentiate the roles permissions.  Logging on as anything seems to be sufficient and that's not what I want.

Answer 2

User614698185 posted

Hi geoffHome,

If you want to apply URL authorization rules to a specific location, I create the sample for you, like below:

<configuration>
 <system.web>
 <authorization>
 <deny users="?" />
 </authorization>
 </system.web>

 <location path="CreatingUserAccounts.aspx">
 <system.web>
 <authorization>
 <allow users="Tito" />
 <deny users="*" />
 </authorization>
 </system.web>
 </location>
</configuration> 

For more information, please see: http://www.asp.net/web-forms/overview/older-versions-security/membership/user-based-authorization-cs

Best Regards,

Candice Zhou