问题
I'd like to authorize users to perform specific actions within my controllers. I've found the ASP.NET tutorial which explains how to allow individual users to perform specific actions but can this be extended to security groups? For example, would everyone belonging to the "domain\group" security group have access to the GetSecrets action if the code looked like this:
[Authorize(Users="domain\group")]
public ActionResult GetSecrets()
{ return View(); }
If not, how would I do this?
回答1:
You want to use the Roles property. Note that this can be a comma-separated list of roles.
[Authorize(Roles=@"domain\group")]
来源:https://stackoverflow.com/questions/1766914/authorize-an-entire-security-group-to-perform-an-action-in-asp-net-mvc