[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1687
  • Last Modified:

ASP.Net MVC 4 C# -- simple membership, field security

I already have my simple membership setup and it works great on page level security, but I need it to work at the "field level" based on status.

What do you recommend ?
--------------------------------------------------------------------------------
Example
  ** 20 fields that must be disable based on a users role and a status of a order record
     currently have 5 roles and 3 status, 300 different possible conditions that I have to account for

Steps
    ** setup FIELD level security in edit.cshtml/etc
    ** if logged in user’s Role is Admin, xxxx, or xxxx
    ** and current database record’s ProcessID# column is xxxx
    ** then display this field as ReadOnly/etc

http://www.codeproject.com/Tips/403921/Field-Based-Security-in-ASP-NET-MVC-3-for-Differen
  ** like what I need, but does not base on "status of a order record"

http://stackoverflow.com/questions/450160/how-do-you-achieve-field-level-security-in-asp-net
  ** exactly what I need, talks about using http://www.cslanet.com, but I want easier

http://www.fluentsecurity.net
  ** maybe some type of 3rd part tool ?
0
finance_teacher
Asked:
finance_teacher
1 Solution
 
Roopesh ReddyCommented:
Hi,

I recommend the Code Project article! Added to it, check this Stack Overflow thread - http://stackoverflow.com/questions/6737634/whats-the-best-practice-for-field-level-security-in-mvc-3

Hope it helps u...
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now