Geek Answers Handbook

How can I change the ASP.Net MVC Login Redirect based on the role?

I have the following code that I entered in the Account Controller in my MVC project, and I am both an administrator and a manager. When I log in, I am redirected back to my home index, and not redirected to the AdminApp index. Any ideas I'm wrong in my code?

[AcceptVerbs(HttpVerbs.Post)] [System.Diagnostics.CodeAnalysis.SuppressMessage("Microsoft.Design", "CA1054:UriParametersShouldNotBeStrings", Justification = "Needs to take same parameter type as Controller.Redirect()")] public ActionResult LogOn(string userName, string password, bool rememberMe, string returnUrl) { if (!ValidateLogOn(userName, password)) { return View(); } FormsAuth.SignIn(userName, rememberMe); if (!String.IsNullOrEmpty(returnUrl)) { return Redirect(returnUrl); } else { if (User.IsInRole("Administrator") || (User.IsInRole("Manager"))) { return RedirectToAction("Index", "AdminApp"); } else { return RedirectToAction("Index", "Home"); } } }
+7
redirect asp.net-mvc asp.net-membership roles
source share
3 answers

The reason your code does not work as expected is because User has technically not and is not yet signed. What, what? But you called SignIn!

FormsAuth.SignIn(userName, rememberMe); - which in this case is just a wrapper for FormsAuthentication.SetAuthCookie(userName, createPersistentCookie); - only sets the asp.net authorization cookie in the users browser as part of the response. Only for requests after this item indicates that the user's browser will have a cookie, as a result of which the asp.net member will correctly configure the User object. All your code in the LogOn method still accepts an anonymous user, so the IsInRole check fails and you are redirected home. Place the if statement on another page and after logging in you will see that User.IsInRole now works as expected. (And really, this is what you would use User.IsInRole for, just not during the login process)

So how to check during the actual login process? Roles.IsUserInRole or Roles.GetRolesForUser are several ways, for example:

 if (Roles.IsUserInRole(userName, "Administrator") || Roles.IsUserInRole(userName, "Administrator")) { return RedirectToAction("Index", "AdminApp"); }

You must explicitly specify the login name of the user who logs in to the membership data warehouse. In this note, I believe that the above code would lead to two requests being executed, which might turn out to be less than ideal. This is where Roles.GetRolesForUser might be the best option:

 string[] roles = Roles.GetRolesForUser(userName); if (roles.Contains("Administrator") || roles.Contains("Manager")) { return RedirectToAction("Index", "AdminApp"); }

Hope this helps!

+19
source share

I am using VS 2013 and the new Identity model, I ended up with this:

 foreach (IdentityUserRole identityUserRole in user.Roles) { if (identityUserRole.RoleId == "AdminRoleId") { return RedirectToAction("Index", "Admin"); } else if (identityUserRole.RoleId == "MemberRoleId") { return RedirectToAction("Index", "Members"); } }
+2
source share

You need to unlock the if statement. Go to the following:

Change this:

 FormsAuth.SignIn(userName, rememberMe); if (!String.IsNullOrEmpty(returnUrl)) { return Redirect(returnUrl); } else { if (User.IsInRole("Administrator") || (User.IsInRole("Manager"))) { return RedirectToAction("Index", "AdminApp"); } else { return RedirectToAction("Index", "Home"); } }

:

 if (User.IsInRole("Administrator") || (User.IsInRole("Manager"))) { return RedirectToAction("Index", "AdminApp"); } else { return RedirectToAction("Index", "Home"); }

The problem is that the if(!String.IsNullOrEmpty(returnUrl))) string evaluates to True because the returnUrl parameter has the URL of the page you came to by default.

0
source share

More articles:


All Articles