发表新帖
发表新帖

ASP.NET Identity “Role-based” Claims

后端 未结
关注
3 1658
小蘑菇
小蘑菇 2020-12-30 00:17

I understand that I can use claims to make statements about a user:

var claims = new List();
claims.Add(new Claim(ClaimTypes.Name, \"Peter\"));
相关标签:
3条回答
  • 天命终不由人
    2020-12-30 00:33

    You can store roles using the ClaimType Role

    claims.Add(new Claim(ClaimTypes.Role, "SuperAdmin"));
    0 讨论(0)
  • 猫巷女王i
    2020-12-30 00:48

    This is already done for you by the framework. When user is logged in, all user roles are added as claims with claims type being ClaimTypes.Role and values are role name.

    And when you execute IPrincipal.IsInRole("SuperAdmin") the framework actually checks if the claim with type ClaimTypes.Role and value SuperAdmin is present on the user.

    So don't need to do anything special. Just add a user to a role.

    0 讨论(0)
  • Happy的楠姐
    2020-12-30 00:52

    You need to specify the Role in a claim with a type of ClaimsType.Role and then specify the claim type that contains the role in the ClaimsIdentity as shown below.

    var claimsIdentity = new ClaimsIdentity(new[]
{
    new Claim(ClaimTypes.Email, "peter@domain.com"),
    new Claim(ClaimTypes.Name, "Peter"),
    new Claim(ClaimTypes.Role, "SuperAdmin"),
},
"ApplicationCookie", ClaimTypes.Email, ClaimTypes.Role);

    This will then allow you to use the [Authorize(Roles = "SuperAdmin")] attribute in your controllers.

    0 讨论(0)
 看不清?
提交回复
热议问题