Asp.net Global.asax question

Question

2.23/5 (3 votes)

See more:

wed config

XML

<location path="~/elmah.axd">
    <system.web>
      <authorization>
        <allow roles="Administrator"/>
        <deny users="*"/>
      </authorization>
    </system.web>
  </location>
</configuration>

and my appl_benRequest

C#

protected void Application_BeginRequest()
   {
       if (Request.Url.AbsolutePath.ToLowerInvariant().Contains("elmah.axd"))
       {
           // Check if user can see elmah and handle unauthorised users (return 401/redirect to login page/etc...)


       }
how to find login person roleid here plz help me out ...Thanks a lot in advance

   }

Posted 22-May-13 0:44am

Member 10057465

Add a Solution

2 solutions

Solution 1

There are a number of methods that may be helpful to you.

Check out the System.Web.Security namespace

//find out if the current user is in the administrators role
User.IsInRole("Administrator")

//gives a list of all roles the current user is in
Roles.GetRolesForUser(User.Identity.Name)

//gives list of all users in administrators role
Roles.GetUsersInRole("Administrator")

If i needed to check if a user was in the Administrator role, i would do this
if (User.IsInRole("Administrator"))
{
//code
}

Posted 22-May-13 9:44am

mgoad99

Comments

Member 10057465 23-May-13 5:43am

Thanks a lot for response..
but problem is i am using application_BeginRequest method in Global.asax where above all methods
are getting NullReference exceptions...Plz Help me out

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

mgoad99 · Accepted Answer · 2013-05-23T05:11:00

Sorry, i cannot figure out how to add code in a comment, so i am just submitting another answer.

XML

A couple of things I noticed.

You are doing this in your web.cofig:
<pre>
<location path="~/elmah.axd">
    <system.web>
      <authorization>
        <allow roles="Administrator"/>
        <deny users="*"/>
      </authorization>
    </system.web>
  </location>
</pre>
Now, if that is setup correctly, when someone not in the administrator group tries to view the elmah page, it will give them an access denied message.  There is no reason to check again in the global.asax.
Try changing:
<pre>
<location path="~/elmah.axd">
</pre>
To:
<pre>
<location path="elmah.axd">
</pre>

Even if you MUST check in the global.asax for some reason, the place would not be application_BeginRequest
Here is a link to an article that may help you find the right method to use in the Global.asax

http://stackoverflow.com/questions/3072768/net-application-beginrequest-how-to-get-user-reference