Windows身份验证混合动力 [英] Windows authentication hybrid
问题描述
我使用Windows身份验证的Intranet MVC应用程序。我想附加逻辑添加到验证过程。换句话说,以及存在于AD,用户还必须在自定义数据库存在它们被认证之前。
I am using windows authentication for an intranet MVC application. I want to add additional logic to the authentication process. In other words as well as existing in AD, the user must also exist in a custom database before they are authenticated.
他们也应该注销MVC应用程序,并使用相同的AD身份重新登录,但有不同的部门选择。
They should also be to log out of the MVC app, and login again with the same AD identification, but with a different department selected.
我不知道的接近这一点的最好办法,因为在windows身份验证prevents任何自定义成员提供程序从正在运行的切换。
I'm not sure of the best way of approaching this, as switching on windows authentication prevents any custom membership provider from being run.
推荐答案
我想你将不得不使用域机制,并检查是否有用户在一个角色。
I think You would have to use domain mechanisms, and check if a user is in a Role.
斯科特谷的描述:
<一个href="http://weblogs.asp.net/scottgu/archive/2006/07/12/Recipe_3A00_-Enabling-Windows-Authentication-within-an-Intranet-ASP.NET-Web-application.aspx" rel="nofollow">http://weblogs.asp.net/scottgu/archive/2006/07/12/Recipe_3A00_-Enabling-Windows-Authentication-within-an-Intranet-ASP.NET-Web-application.aspx
MSDN说明:
http://msdn.microsoft.com/en-us/library/ ff647405.aspx
......这其实不是让SQL帐户权限在域更容易
... this is actually easier than making SQL account permissions in a Domain
这篇关于Windows身份验证混合动力的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!