MVC Security Model / Database MVC - What are my options?

Question

MVC Security Model / Database MVC - What are my options?

We have several projects (ASP.NET MVC) that require the Role / User / Permissions security model. We want to store this data in tables in our database. How to make your recommendation, we are going to implement this security model using our ASP.NET MVC projects? Use custom authentication attributes that will determine if the user is allowed to interact with the data model in our database?

Are third party / open source options available?

+3

security authorization asp.net-mvc

Jeff Feb 03 '11 at 20:07

source share

3 answers

, , - , asp.net, , /.

-, authorize , "" , , onactionexecuting.

+1

Dusty Roberts 04 . '11 9:56

I use Rhino Security for a complex MVC site and love it.

http://ayende.com/Blog/archive/2008/01/22/Rhino-Security-Overview-Part-I.aspx

Enabling security calls is as follows:

     permissionBuilderService
                .Allow("/[Controller]", 1)
                .For("GAAdmins", 1)
                .OnEverything()
                .DefaultLevel()
                .Save();

authorizationRepository.AssociateUserWith(user, "GAAdmins"); 


if (authService.IsAllowed(user, "/[Controller]/[Action]"))
 ...;

0

rboarman Feb 03 '11 at 21:45

source share

mare · Accepted Answer · 2011-02-03T21:37:40+0000

Entity Framework, MVC EF. http://efmembership.codeplex.com/

MVC Security Model / Database MVC - What are my options?

More articles: