asp.net mvc - mvc.net custom [Authorize] attribute -

-

i working mvc4 in project, simplemembership role provider. need implement task based access in project. actionresult([httppost]) consist of create,get,update , delete methods. implemented custom authorize class is...

public class authorizeuserattribute : authorizeattribute {      // custom property     public string accesslevel { get; set; }               protected override bool authorizecore(httpcontextbase httpcontext)     {         var isauthorized = base.authorizecore(httpcontext);      if (!isauthorized)         {             return false;         }          string privilegelevels = string.join("", objmanager.getpermissions()); // call method rights of user db(view,delete,update,create)           if (privilegelevels.contains(this.accesslevel))         {             return true;         }         else         {             return false;         }     }      protected override void handleunauthorizedrequest(authorizationcontext filtercontext)     {         //some code redirect request page , showing alert("you don't have permission action") through response.      } }

i can't use [authorizeuser(accesslevel="get or delete or view or create")] on each actionresult. because implemented total view, create, update , delete functionality in 1 actionresult(which calls methods create, update, delete , view).

my problem when giving [authorizeuser(accesslevel="get")] methods, [authorizeuser(accesslevel="create")] create methods , on.... after control coming inside actionresult() checking first [authorizeuser(accesslevel="some access level")], once authorize, not checking other method [authorizeuser].

after trying [authorizeuser] on actionresult(), came conclude each page request checking authorization(not seconed time), there way call [authorizeuser(accesslevel="some access level")] more 1 time in single page request.

thanks in advance...


Comments

Post a Comment

Popular posts from this blog

c++ - Linked List error when inserting for the last time -

-
so have part of code here this loop 5 times (max = 5) insert word link list. for ( int = 0 ; < max ; i++ ) { string alphabet = g->returnalphabets(); l[i]->addwords(alphabet[i]); } and have insert word part here string line; fstream myfile ("words.txt"); while (!myfile.eof()) { getline(myfile,line); if ( alphabet == line[0] ) { listnode *newnode = new listnode; if ( head == null ) { newnode->item = alphabet; newnode->next = null; head = newnode; } else { newnode->item = line; prev = cur; prev->next = newnode; } cur = newnode; } } myfile.close(); my problem gives me error on last loop. meaning on max = 4, insert node. rest of loop fine. when decrease max 4 meaning loop 4 times, program error-free when program loops 5 times gives error. anyone can poin...
Read more

java - activate/deactivate sonar maven plugin by profile? -

-
i use sonar plugin executes if activated in maven profile. sonar runs on every compile. the problem build fail other team members not have sonar application installed locally. pom.xml checked in team members same copy including sonar configuration, don't want them modify purpose of disabling sonar (they might inadvertently check modified copy in). please advise how configure maven (.m2/settings.xml) and/or pom.xml sonar feature can enabled/disabled local profile. here sonar configuration in each project's pom.xml: <plugin> <groupid>org.codehaus.mojo</groupid> <artifactid>sonar-maven-plugin</artifactid> <version>1.0</version> <executions> <execution> <id>make-sonar</id> <phase>compile</phase> <goals> <goal>sonar</goal> </goals> </execution> </executions> ...
Read more

java - What is the difference between String. and String.this. ? -

-
this question has answer here: meaning of .this , .class in java 2 answers i'll straight point. im still learning bit of syntax , want know difference between code is code a: public class buttonz extends jbutton{ public buttonz(){ settext(new string(string.valueof(i))); } } please ignore fact i undeclared, not lost. code b: public class buttonz extends jbutton{ public buttonz(){ settext(new string(string.this.charat(i))); } } what don't yet understand difference in typing string.this , string. i under assumption when use dot operator on class accessing it's static methods(and/or variables if they're not hidden). i have studied little bit , have concluded when using string. accessing string static methods.. when using string.this. i'm accessing methods class buttonz extendi...
Read more