Mixed Security Information?

P

patrick24601

Freshman
Joined
May 16, 2005
Messages
34
Has anybody ever written (or knows where I can find an article) on mixed .NET security? I'd like to present a login form (i.e. form security), validate the ID/password against Windows, and use my own tables for role lookup and management.

TIA.
 
If you are wanting to integrate with windows security you can just use System.Environment.UserDomainName and System.Environment.UserName to get the current users domain and username.
You do not need to ask the user for their password yourself - if they are logged on then windows has already validated them.
 
Thanks. Any ideas about the internal SQL Server based role management I want to do or is that all custom code on my part? I did not know if any of the internal Security methods could use something other than NT for role lookup. Still reading.
 
It might help if you gave more information about what you are trying to do here as .Net does provide methods you can use to implement your own security model if you want to implement your security there.
If you are securiung SQL then you can create roles etc from various stored procedures (sp_addrole, sp_addrolemember etc.)
 
Here goes.

Sorry - I thought I had explained it in the first post but here goes:

I want to validate all users using Windows security. Every user on this web application will need to have a valid Windows account to login.

After they login I want to use my own internal application role management - not Windows Group/role management. We do not have the ability easily add/remove groups so I'll be handing that internally.
 
Didn't realise you were using ASP.Net that's all.

If you set the web.config to use Windows authentication then it will automatically provide / prompt when a secured page is accessed. From this you should then be able to query the User object in code to get the user name etc.
If you are then wanting to create your own user / group management you would need to investigate the GenericIdentity and GenericPrinciple classes. These will allow you to create your own user objects and assign them to your own groups based on whatever mechanism you are using to track these things (SQL etc)
 
Back
Top