Authorization and Roles

Summary

The objective of this drill is to learn about role-based security in ASP.NET 2.0. You will work with users and roles and learn how to authorize and manage them. At the end of the drill, you will work with role-based code accessed security.

Audience

This Drill is for developers who want to be able to understand and work with users and roles in their ASP.NET 2.0 applications.

What you'll learn

After taking this Drill, you will be able to create and assign users and roles using either the ASP.NET Web Site Administration tool or using the Role class. Using URL Authorization, you will be able to permit or deny access to specific parts of the web application. You will be able to create a custom role provider when your data source does not satisfy the default providers and you will be able to restrict permission to certain parts of the source code in an application based on roles.

What you need to know

We assume that you’re already familiar with the concepts of programming and you’ve some experience with Visual Studio 2005. For this particular Drill, you’ll also need to be comfortable with Visual C# or Visual Basic syntax and HTML. Although not essential, experience in object-oriented development, server page technology and basic knowledge of SQL Server would also be useful.