Security Attributes without Try-Finally?

L

localhost

I have decorated several classes and methods in an
ASP.NET appliation with declarative security attributes
for roles. For example:

[System.Security.Permissions.PrincipalPermission
(System.Security.Permissions.SecurityAction.Demand ,
Role="SomeRole")]

I currently use a Try...Finally block in calling code to
test a user's Role permissions. I would like to get away
from this and use a real logical construct.

How can I test for Role access with attributes and not
use Try...Finally?

Thanks.
 
S

Steven Cheng[MSFT]

Hi localhost,


Thank you for using Microsoft Newsgroup Sevice. Based on your description,
you are wanting to apply Role-based access checking in the some methods,
also you don't want to use the "Try ... catch ...Finally" style to check.
Is my understanding of'
your problem correct?

If so, here is some suggestions on it:

If you do not want a thrown exception to be the default behavior for
validation failure. In this case, you can use the static CurrentPrincipal
property on the System.Threading.Thread class to access the Principal
object and call its methods.

After obtaining the principal object, you can use conditional statements to
control access to your code based on the principal name as shown in the
following code example:

WindowsPrincipal MyPrincipal = (WindowsPrincipal) Thread.CurrentPrincipal;
if (MyPrincipal.Identity.Name == "fred")
// Permit access to some code.

You can also programmatically check role membership by calling the IsInRole
method on the current Principal object as shown in the following code
example:

WindowsPrincipal MyPrincipal = (Thread.CurrentPrincipal as
WindowsPrincipal);
if (MyPrincipal.IsInRole("Administrator")) {
// Permit access to some code.
}

The examples are from the MSDN Library in dotnet security section, if you
need detailed information on it, you can visit
this topic directly via the following weblink:
http://msdn.microsoft.com/library/en-us/cpguide/html/cpcondirectlyaccessingp
rincipalobject.asp?frame=true


Please try out the above suggestion. If you have any questions, please feel
free to let me know.


Merry Christmas!!

Steven Cheng
Microsoft Online Support

Get Secure! www.microsoft.com/security
(This posting is provided "AS IS", with no warranties, and confers no
rights.)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

weird try/finally behaviour 1
try...finally semantics 8
try/finally implementation in c++ 10
Question on Security application block 0
try: finally: question 26
[python] using try: finally: except 10
Authentication Security 1
finally with no try/catch? 3

Members online

Total: 23 (members: 1, guests: 22)
Robots: 402

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,020
Latest member
GenesisGai

Latest Threads

Top