Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at


  • Pete 213 posts 285 karma points
    Nov 25, 2011 @ 14:48
    Pete
    0

    Can the role provider be used for roles in membership as well as roles in users?

    I had a go at using it with AD membership provider, but couldn't get it to authenticate, I changed Context.Domain to ContextType.ApplicationDirectory, so I could use it with my ADAM local instance.

    For the custommembershipProvider in web.config I also set:

    attributeMapUsername="userPrincipalname"
    defaultMemberTypeAlias="User"

    Peter

  • Kevin Jump 2317 posts 14726 karma points MVP 7x c-trib
    Nov 25, 2011 @ 15:17
    Kevin Jump
    0

    You can't use the Backoffice provider as is, because the on the standard provider GetUserRoles and GetRoles don't return lists, mainly because they would have to return all your active directory groups. - 

    There are two main problems using that provider:

    1. The standard AD provider requires the user to login: this provider is ontop of the Windows Role provider so the user login can be made seemless using IIS Authentication
    2. When right clicking on a node in your content tree and trying to appy role permissions you get a .net error as the GetUserRoles provder doesn't return the list - can't remember the exact error. 
    this provider solves that by limiting the list of groups it returns to those in the web.config, 
    it also has a hidden bonus of working with nested security groups which the standard AD provider doesn't do.

     

     

     

Please Sign in or register to post replies

Write your reply to:

Draft