Alt*_*ive 5 asp.net authentication asp.net-mvc roles
这个问题我已经为webforms应用程序解答了,但是我可以用这段代码隐藏我的管理菜单项吗?是否可以使用sitemap绑定?
我的菜单:Layout.cshtml
Run Code Online (Sandbox Code Playgroud)<ul id="navlist"> <li class="first"> <a href="@Url.Content("~")" id="current">Home</a> </li> <li> <a href="#">User</a> <ul class="second"> <li> <a href="@Url.Content("~/Service/")">> Services</a></li> </ul> </li> <li> <a href="#">Administration</a> <ul class="second"> <li><a href="@Url.Content("~/ServiceManager")">> Services</a></li> </ul> </li> <li>@Html.Partial("_LogOnPartial") </li> </ul>
如Alternative所述,使用简单if语句的适用性取决于:
- 你有多少角色(你可能希望通过避免多个角色来避免对数据库的多次查询)
if(User.IsInRole("whatever"))
- 如果您使用的是自定义角色和成员资格提供程序,在这种情况下,您可能希望避免同时使用User.IsInRole,因为它每次都会打开与数据库的新连接.
Brij Mohan Dammani描述了一个具有一些不错功能的解决方案,但是我喜欢在视图中放置太多逻辑.在面向对象的语言中,我也更喜欢强类型对象.
基于Brij Dammani描述的代码,我现在使用一个模型:
namespace Whatever
{
public class RoleMenuItem: MenuItem
{
public RoleMenuItem(){}
public RoleMenuItem(string linkText, string actionName, string controllerName, string roleNames)
{
LinkText = linkText;
ActionName = actionName;
ControllerName = controllerName;
RoleNames = roleNames;
}
public string RoleNames { set { Roles = value.Split(new String[] { "," }, StringSplitOptions.RemoveEmptyEntries); } }
internal string[] Roles;
}
public class MenuItem
{
public string LinkText { get; set; }
public string ActionName { get; set; }
public string ControllerName { get; set; }
}
public class RoleMenu : System.Collections.Generic.IEnumerable<MenuItem>
{
private readonly List<RoleMenuItem> _roleMenuItems = new List<RoleMenuItem>();
private readonly string[] _userRoleNames;
public readonly bool _isAuthenticated;
public RoleMenu()
{
if (_isAuthenticated = WebSecurity.User.Identity.IsAuthenticated)
{
_userRoleNames = Roles.GetRolesForUser();
}
}
public RoleMenu(IDataContext context)
{
if (_isAuthenticated = WebSecurity.User.Identity.IsAuthenticated)
{
string userName = HttpContext.Current.User.Identity.Name;
User usr = context.Users.FirstOrDefault(Usr => Usr.UserName == userName) ;
_userRoleNames = (usr==null)? new string[0]: usr.Roles.Select(r => r.RoleName).ToArray();
}
}
public RoleMenu Add(RoleMenuItem menuItem)
{
string[] menuRoles = menuItem.Roles;
if (
menuRoles.Contains("All" ) ||
(!_isAuthenticated && menuRoles.Contains("Anonymous")) ||
(_isAuthenticated && (menuRoles.Contains("Authenticated") || menuRoles.Any(mr=>_userRoleNames.Contains(mr))))
)
{
_roleMenuItems.Add(menuItem);
}
return this;
}
IEnumerator IEnumerable.GetEnumerator()
{
return GetEnumerator();
}
public System.Collections.Generic.IEnumerator<MenuItem> GetEnumerator()
{
return _roleMenuItems.GetEnumerator();
}
public IEnumerable<MenuItem> ItemsForRole(string roleName)
{
return _roleMenuItems.Where(r => r.Roles.Contains(roleName));
}
}
然后在每个Controller的构造函数中(为依赖注入设置)
ViewBag.Menu = new RoleMenu(_db);
并在_Layout视图中
@using WhateverNamespace
<nav>
<ul id="menu">
@{
RoleMenu menu = (ViewBag.Menu ?? new RoleMenu())
.Add(new RoleMenuItem("Home", "Index", "Home","Anonymous"))
.Add(new RoleMenuItem("Home", "Auth", "Home","Authenticated"))
.Add(new RoleMenuItem("About", "About", "Home","All"))
.Add(new RoleMenuItem("Administer", "Index", "Administrators","Webmaster,Administrator"))...;
foreach (var link in menu)
{
<li>
@Html.ActionLink(link.LinkText, link.ActionName,link.ControllerName)
....
要么
if((var adminMenuItems=menu.ItemsFoRole("admin")).Any()) {
<li><ul>
foreach (var link in adminMenuItems) {
<li> ....
}
只需添加此 IF 条件即可正常工作。其中“管理员”是您要为其显示此菜单项的用户角色。
Run Code Online (Sandbox Code Playgroud)@if(User.IsInRole("Administrator")) { <li> <a href="#">Administration</a> <ul class="second"> <li><a href="@Url.Content("~/ServiceManager")">> Services</a></li> </ul> </li> }
| 归档时间: |
|
| 查看次数: |
10266 次 |
| 最近记录: |