如何解决角色身份验证在asp.net中不起作用
| 我正在使用下面的代码基于用户身份验证访问页面库if (user.FirstOrDefault() == HashedPassword)
{
string roles = \"Member\";
// Create the authentication ticket
FormsAuthenticationTicket authTicket = new
FormsAuthenticationTicket(1,// version
loginName.Text,// user name
DateTime.Now,// creation
DateTime.Now.AddMinutes(60),// Expiration
false,// Persistent
roles); // User data
// Now encrypt the ticket.
string encryptedTicket = FormsAuthentication.Encrypt(authTicket);
// Create a cookie and add the encrypted ticket to the
// cookie as data.
HttpCookie authCookie =
new HttpCookie(FormsAuthentication.FormsCookieName,encryptedTicket);
// Add the cookie to the outgoing cookies collection.
Response.Cookies.Add(authCookie);
Response.Redirect(\"/Members/ClientAccount.aspx\");
}
else
{
Response.Redirect(\"signin.aspx\");
}
<?xml version=\"1.0\" encoding=\"utf-8\"?>
<configuration>
<location path=\"members.aspx\">
<system.web>
<authorization>
<allow roles=\"Member\" />
<allow roles=\"Admin\" />
<deny users=\"?\" />
</authorization>
</system.web>
</location>
<location path=\"ClientAccount.aspx\">
<system.web>
<authorization>
<allow roles=\"Admin\" />
<deny roles=\"Member\"/>
<deny users=\"?\" />
</authorization>
</system.web>
</location>
</configuration>
解决方法
仔细检查您相对于web.config的位置路径,我的猜测是问题所在。
<location path=\"/Members/ClientAccount.aspx\">
...
</location>
Response.Redirect(\"/Members/ClientAccount.aspx\");
<authentication mode=\"Forms\" />
<authentication mode=\"Forms\">
<forms loginUrl=\"Login.aspx\"
protection=\"All\"
timeout=\"30\"
name=\".ASPXAUTH\"
path=\"/\"
requireSSL=\"false\"
slidingExpiration=\"true\"
defaultUrl=\"default.aspx\"
cookieless=\"UseDeviceProfile\"
enableCrossAppRedirects=\"false\" />
</authentication>
<authorization>
<allow roles=\"Admin\" />
<allow roles=\"Member\"/>
<deny users=\"?\" />
</authorization>
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。
