Windows Authentication - User Roles

Question

User-981963818 posted

I enabled Windows Authentication for a Web Pages site like explained here: http://www.mikepope.com/blog/AddComment.aspx?blogid=2298

Is it possible to restrict or allow access to certain pages based upon username or user group?

Thanks.

Answer 1

User379720387 posted

Put this at the top of the page inside the code brackets.

WebSecurity.RequireRoles("youruserrolehere");

Answer 2

User-981963818 posted

Thanks for the reply.

When I tried that, I got this message.

To call this method, the "Membership.Provider" property must be an instance of "ExtendedMembershipProvider".

Answer 3

User-1974948304 posted

Greetings,

looks like you have not  created roles. Open your database and verify that you have these three tables:
webpages_UsersInRoles
webpages_Roles
webpages_Membership.

Then verify that they are NOT empty. Finally, open your web.cofig file and verify that Windows Authentication is set to "Enabled".

Like this:

<authentication>

 <windowsAuthentication enabled="true" />

            </authentication>
 hope this helps
yousaid

 

Answer 4

User1713851783 posted

I enabled Windows Authentication

I have no experience with Windows Authentication but maybe this article could help: How To: Use Windows Authentication in ASP.NET 2.0.

Answer 5

User-981963818 posted

Hi Everyone and thanks for the suggestions. I'm sorry that I took so long to follow up.

Here is what I decided to do with help from this link provided by GmGregori: http://msdn.microsoft.com/en-us/library/ff647405.aspx. It seems to get the job done.

In web.config:

      <roleManager enabled="true"
             defaultProvider="AspNetWindowsTokenRoleProvider"/>

In _PageStart file or in the file of your choosing:

   if(Roles.IsUserInRole(@"Domain\Username")) {
  // Perform restricted operation
  }
else{
  Response.Redirect("~/AreaRestricted");
  }