ASP.NET MVC: Restricting Access Using a URL

Question

ASP.NET MVC: Restricting Access Using a URL

The URL of the administration section of my website always starts with Admin/. Is it possible in ASP.NET MVC to restrict access to users using this part of the URL?

Obviously, I would save it [Authorize(Roles = "Administrator")]on the appropriate controllers and actions, but I wonder if it will be faster for the application if it can just look at the URL instead of entering the code.

+3

asp.net-mvc url-routing filtering

ajbeaven Sep 2 '09 at 21:46

source share

3 answers

, . Actions , (, , , ) URL, .

, Unit Test .

+1

Chris Arnold 03 . '09 9:00

BaseAdminController, :

[Authorize(Roles = "Administrator")]
public class BaseAdminController : Controller {
}

, URL-, , , , , . , Admin .

+1

neouser99 04 . '09 1:54

source share

ajbeaven · Accepted Answer · 2009-09-02T22:04:49+0000

Found the answer in Stephen Sanderson's book, Pro ASP.NET MVC Framework .

Put the following code in your web.config file.

<location path ="Admin">
  <system.web>
    <authorization>
      <deny users="?"/>
      <allow roles="Administrator"/>
      <deny users="*"/>
    </authorization>
  </system.web>
</location>

, URL-, ~/Admin/*, , , "".

ASP.NET MVC: Restricting Access Using a URL

More articles: