In my asp.net application , I need to implement event based authorization. For example , In a page add,edit and delete buttons are there. There are different types of roles are defined. The role has permission to view the page but inside that page whether user can add or delete or edit the record will depend on the rights given to that role. For example , there is a role with name Auditor and only Add button permission are assigned to this role. Now if a user with role Auditor access a page which has Add,Edit and Delete buttons then this user should be able to Add records only.
Simply , I want to define the name of the event for a button and want to control this event through the permission assigned to a role.
Can you suggest me the best way to achieve it.
What I have tried:
Searched the web but did not find answer