ONJava.com -- The Independent Source for Enterprise Java
oreilly.comSafari Books Online.Conferences.

advertisement

AddThis Social Bookmark Button
Article:
  ASP.NET Forms Security, Part 2
Subject:   One thing Roles in ASP.Net 2.0 forgot...
Date:   2006-04-12 17:31:50
From:   EdSF
Seems strange that Roles doesn't have a built-in setting to configure a redirect/default page if authorization fails.


In other words, a user can authenticate (Forms), but since the user isn't authorized to view a resource because of a role restriction (ex. Admin role only), the default behavior is to go back to the login page with absolutely no feedback.


Yes, programmatically handling this is the recourse, just seems odd. Not even sure if it's safe to keep redirecting to the login page (re: multiple logins).


1 to 1 of 1
  1. One thing Roles in ASP.Net 2.0 forgot...
    2008-12-18 01:01:49  maqn2000 [View]

1 to 1 of 1