asp.net web api2 - Get AuthorizeAttribute to work roles with start and expiration date in web api 2 application ? -


i need modify user roles in web api 2 project using identity 2 adding additional properties: datetime startdate , datetime enddate. required able grant users roles limited period of time.

what need authorize attribute such [authorize(role="poweruser")] etc. understand role dates?

according source (https://github.com/asp-net-mvc/aspnetwebstack/blob/master/src/system.web.http/authorizeattribute.cs) filter calls iprincipal.isinrole:

protected virtual bool isauthorized(httpactioncontext actioncontext) {     ...       if (_rolessplit.length > 0 && !_rolessplit.any(user.isinrole))     {         return false;     }      return true; }

looks need subclass implementation of iprincipal in httpactioncontext.controllercontext.requestcontext.principal , somehow inject somewhere in life cycle instead of default implementation.

how do this?

just create custom implementation of of authorizeattribute userauthorize , instead of using [authorize(role="poweruser")] use [userauthorize(role="poweruser")]. userauthorize implmentation this:

public class userauthorizeattribute : authorizeattribute {     /// <summary>     /// validate user request selected feature     /// </summary>     /// <param name="httpcontext"></param>     /// <returns></returns>     protected override bool authorizecore(httpcontextbase httpcontext)     {         var isauthorized = base.authorizecore(httpcontext);         if(!isauthorized) {             return false; //user not logged in         }         //your custom logic here      }

Comments

Post a Comment

Popular posts from this blog

javascript - AngularJS custom datepicker directive -

i make custom datepicker directive custom template. but have no idea how start building it... how include date data directive? i appreciate guide or give me advice work on more precisely. it might you! follow below steps html code sample: <label>birth date</label> <input type="text" ng-model="birthdate" date-options="dateoptions" custom-datepicker/> <hr/> <pre>birthdate = {{birthdate}}</pre> <script type="text/ng-template" id="custom-datepicker.html"> <div class="enhanced-datepicker"> <div class="proxied-field-wrap"> <input type="text" ui-date-format="yy-mm-dd" ng-model="ngmodel" ui-date="dateoptions"/> </div> <label> <button class="btn" type="button"><i class="icon-calendar"></i>
Read more

javascript - jQuery date picker - Disable dates after the selection from the first date picker -

<!doctype html> <html lang="en"> <head> <meta charset="utf-8"> <title>jquery ui datepicker - default functionality</title> <link rel="stylesheet" href="//code.jquery.com/ui/1.11.4/themes/smoothness/jquery-ui.css"> <script src="//code.jquery.com/jquery-1.10.2.js"></script> <script src="//code.jquery.com/ui/1.11.4/jquery-ui.js"></script> <link rel="stylesheet" href="/resources/demos/style.css"> <script> $(function () { $("#datepicker1").datepicker(); }); </script> <script> $(function () { $("#datepicker2").datepicker(); }); </script> </head> <body> <p>date 1: <input type="text" id="datepicker1"></p> <p>date 2: <input type="t
Read more