File Authorization

Previous page
Table of content
Next page
for RuBoard

Now that you know how users are authenticated, you need to control what resources they have access to. File authorization is the method of authorization that existed in ASP.old and migrates forward in ASP.NET.

NOTE

File authorization is the only method of authorization that IIS supports. If Allow Anonymous is off in IIS, authorization is handled by IIS. If Allow Anonymous is on, ASP.NET applies File Authorization.


File Authorization utilizes Access Control Lists (ACLs) to specify the roles that a user must be in to access a file. After the user has been authenticated, the File Authorization module will take each group in the ACL for a file and call IsInRole() on the passing of the name of the group as a parameter to IsInRole() . If IsInRole() returns true, the user is permitted to access the resource. If the File Authorization module iterates across each group in the ACL and never receives a true response from IsInRole() , the user is asked to authenticate again.

File Authorization will work with any type of authentication as long as the principal is populated with the applicable roles as part of the authentication process.

for RuBoard

Previous page
Table of content
Next page
C# Developer[ap]s Guide to ASP. NET, XML, and ADO. NET
C# Developer[ap]s Guide to ASP. NET, XML, and ADO. NET
ISBN: 672321556
EAN: N/A
Year: 2005
Pages: 103
BUY ON AMAZON
Java I/O
SQL Tips & Techniques (Miscellaneous)
Professional Java Native Interfaces with SWT/JFace (Programmer to Programmer)
SQL Hacks
The New Solution Selling: The Revolutionary Sales Process That Is Changing the Way People Sell [NEW SOLUTION SELLING 2/E]
Pocket Guide to the National Electrical Code(R), 2005 Edition (8th Edition)
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy