I am adding some page access auditing to forms authentication based web application.
All of my pages inherit from a base class so it is easy for me to write a page access event log when any page is requested. What I'm having trouble doing is catching when a user requests a page for which they are not in an allowed role.
I can simply check on the default logon page for the requested page query string when the user is redirected but this seems like a very lame way to do it.
Does anyone have any recommendations on how I can generically catch when a user requests a page for which they are not in a valid role before they are redirected to the logon page?
Cheers,
Tim.
All of my pages inherit from a base class so it is easy for me to write a page access event log when any page is requested. What I'm having trouble doing is catching when a user requests a page for which they are not in an allowed role.
I can simply check on the default logon page for the requested page query string when the user is redirected but this seems like a very lame way to do it.
Does anyone have any recommendations on how I can generically catch when a user requests a page for which they are not in a valid role before they are redirected to the logon page?
Cheers,
Tim.