关于Forms验证中User.IsInRole()求教

atester 2003-12-12 05:36:12

我想用User.IsInRole()方法。在通过FormsAuthenticationTicket后，我不知道怎么向User里添加role。
我现在是这样做的：
string [] role = ticket.UserData.Split(',');
HttpContext.Current.User = new System.Security.Principal.GenericPrincipal(User.Identity,role);
但是：
debug的时候发现这个User的IsAuthenticated为false。在其它页面上User的role还是没有。感觉虽然重新构造了User，但后续的使用中，并没有接纳它，只能使用User.Identity.Name

...全文

62 8 打赏收藏转发到动态举报

写回复

用AI写文章

8 条回复

切换为时间正序

请发表友善的回复…

发表回复

atester 2003-12-15

打赏
举报

怎么还是没人帮忙回答啊？

uno 2003-12-15

打赏
举报

只有利用多余的属性自己实现了

uno 2003-12-15

打赏
举报

Forms验证模式下系统好像没有提供Role机制

因为想念才会寂寞 2003-12-15

打赏
举报

if (reader.Read())
{ FormsAuthenticationTicket ticket = new FormsAuthenticationTicket(
1,Username.Value,DateTime.Now,DateTime.Now.AddMinutes(30), true, reader.GetString(0), // 用户数据(表中字段,包含个人角色:admin,user,etc)
FormsAuthentication.FormsCookiePath);
string hash = FormsAuthentication.Encrypt(ticket);
HttpCookie cookie = new HttpCookie(
if (ticket.IsPersistent) cookie.Expires = ticket.Expiration;

// Add the cookie to the list for outgoing response
Response.Cookies.Add(cookie);

// Redirect to requested URL, or homepage if no previous page
// requested
string returnUrl = Request.QueryString["ReturnUrl"];
if (returnUrl == null) returnUrl = "/";

// Don't call FormsAuthentication.RedirectFromLoginPage since it
// could
// replace the authentication ticket (cookie) we just added
Response.Redirect(returnUrl);
}
else
{
// Never tell the user if just the username is password is incorrect.
// That just gives them a place to start, once they've found one or
// the other is correct!
ErrorLabel = "Username / password incorrect. Please try again.";
ErrorLabel.Visible = true;
}

因为想念才会寂寞 2003-12-15