G
Guest
In a new ASP.NET development project I was told that users must be able to
access the application without having to enter a username and password. I
figured this would be easy until I was told that all permissions were to be
stored in the application's SQL database, so that administration could easily
assign other administrators without needing active directory permissions.
For example the users table would have a userId, username, and Full Name such
as: 100, DOMAIN\SomeUser. Some User and the permissions table contains a
relationship userId field and each application permission. Is there an easy
way in ASP.NET 2.0 to accomplish windows authentication with a custom SQL
permissions table? In forms authentication I can have a cookie with user
roles in it. I honestly cannot think of a way to set this up using windows
authentication. I would like to cache the permission into a cookie as well
to eliminate frequent lookups. Thanks for any help that you may be able to
offer
access the application without having to enter a username and password. I
figured this would be easy until I was told that all permissions were to be
stored in the application's SQL database, so that administration could easily
assign other administrators without needing active directory permissions.
For example the users table would have a userId, username, and Full Name such
as: 100, DOMAIN\SomeUser. Some User and the permissions table contains a
relationship userId field and each application permission. Is there an easy
way in ASP.NET 2.0 to accomplish windows authentication with a custom SQL
permissions table? In forms authentication I can have a cookie with user
roles in it. I honestly cannot think of a way to set this up using windows
authentication. I would like to cache the permission into a cookie as well
to eliminate frequent lookups. Thanks for any help that you may be able to
offer