{"id":419,"date":"2009-04-23T03:42:00","date_gmt":"2009-04-23T12:42:00","guid":{"rendered":"http:\/\/www.cloudidentity.com\/blog\/2009\/04\/23\/create-a-minimal-asp-net-membership-website-that-will-come-in-useful-in-another-post\/"},"modified":"2009-04-23T03:42:00","modified_gmt":"2009-04-23T12:42:00","slug":"create-a-minimal-asp-net-membership-website-that-will-come-in-useful-in-another-post","status":"publish","type":"post","link":"https:\/\/www.cloudidentity.com\/blog\/2009\/04\/23\/create-a-minimal-asp-net-membership-website-that-will-come-in-useful-in-another-post\/","title":{"rendered":"Create a Minimal ASP.NET Membership Website (that will come in useful in another post)"},"content":{"rendered":"


\ndigg_url = “http:\/\/blogs.msdn.com\/vbertocci\/archive\/2009\/04\/23\/create-a-minimal-asp-net-membership-website-that-will-come-in-useful-in-another-post.aspx”;digg_title = “Create a Minimal ASP.NET Membership Website (that will come in useful in another post)”;digg_bgcolor = “#FFFFFF”;digg_skin = “normal”;<\/p>\n

digg_url = undefined;digg_title = undefined;digg_bgcolor = undefined;digg_skin = undefined;
\n<\/DIV>
\n

This post contains no special considerations or insights, and is just meant to provide a base for the post here<\/A>. If you are familiar with ASP.NET membership, DON\u2019T READ THIS and go straight here<\/A>. This is just a walkthrough which helps you to create a certain ASP.NET website which takes advantage of the membership provider authentication mechanism and that I use as a starting example in another post<\/A>. We have excellent walkthroughs in MSDN on this topic (see this<\/A>) however 1) this is a specific example and 2) if you are not familiar with our platform, here I added a lot of screenshots that may make your life easier.<\/P>
\n

Let\u2019s say that we want to create a club website, where all the members are software architects who happen to have long hair (or an interest in growing them). We will use a sql membership provider store, we will create users, assign roles and use role info for granting or denying access to parts of the website.<\/P>
\n

The first step is creating the website:<\/P>
\n

\"image\" <\/P>
\n

The result is a classic one-page website, with  no special security settings.<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s go to the Website menu and choose ASP.NET Configuration: <\/P>
\n

\"image\" <\/P>
\n

We\u2019ll end up on the site admin tool, which will allow us to add & configure our membership store<\/P>
\n

 <\/P>
\n

\"image\" <\/P>
\n

Let\u2019s choose \u201cuse the security setup wizard..\u201d<\/P>
\n

\"image\" <\/P>
\n

 <\/P>
\n

Standard splash screen: let\u2019s move on<\/P>
\n

\"image\" <\/P>
\n

Our users will be from the public internet, let\u2019s pick the right selection and move on<\/P>
\n

\"image\" <\/P>
\n

We do want roles.<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s add some roles which represent different hair lengths<\/P>
\n

\"image\" <\/P>
\n

OK, you had enough fun already! four are more than enough \ud83d\ude42<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s add some users: at least two, so that we can experiment with different role assignments<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s deny be default, and we\u2019re almost done.<\/P>
\n

\"image\" <\/P>
\n

Now that we defined both users and roles, we need to assign the latter to the formers:<\/P>
\n

\"image\" <\/P>
\n

The UI makes it very easy<\/P>
\n

\"image\" <\/P>
\n

Once we assigned few roles, we can go back to the app.<\/P>
\n

Let\u2019s customize the default page a bit: green background, some text, and a LoginStatus control that we can use for controlling the session (ie sign out if we are signed in & viceversa) <\/P>
\n

 \"image\" <\/P>
\n

If we want to be even more adaptive, we can add a LoginName control in the text for personalized greetings<\/P>
\n

\"image\" <\/P>
\n

Now hat we have a users store, we need a page for gathering credentials and interrogate it. Let\u2019s add a login.aspx page:<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s drag a Login control in there: that should do.<\/P>
\n

\"image\" <\/P>
\n

Now that we have our default and login pages, let\u2019s add an extra page to demonstrate how to restrict content only to specific roles:<\/P>
\n

\"image\" <\/P>
\n

Write some nonsense in it, make it very recognizable (ie different background than the rest of the website, for example) and we\u2019re done.<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s add a link to the restricted page from the home page:<\/P>
\n

\"image\" <\/P>
\n

Restricting the access to the page is easy: you just add the code fragment below in the web.config. That code means that only the members belonging to the role chewbacca can access the page.<\/P>
\n

\"image\" <\/P>
\n

Let\u2019s give the website a spin. If you navigate to the default.aspx page, since you are not authenticated you\u2019ll end up being redirected to the login page<\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

 <\/P>
\n

\"image\" <\/P>
\n

Note in fact the address<\/P>
\n

\"image\" <\/P>
\n

Once we enter the right credentials, we are in. <\/P>
\n

\"image\" <\/P>
\n

If the user does not belong to the chewbacca role, he\u2019ll be bounced back when trying to follow the exclusive content link. Let\u2019s logout and sign in with a user that is in the chewbacca role:<\/P>
\n

\"image\" <\/P>
\n

\"image\"<\/P>
\n

This time we can successfully access the restricted page.<\/P>
\n

That\u2019s it. As promised, nothing esoteric: no prescriptive guidance or best practices, just a little walkthrough for a trivial sample. I just needed a normal membership provider ASP.NET site as a starting point for the next post<\/A> but 1) i didn\u2019t want to spoil the signal\/noise ratio of that post by adding instructions that are not useful for many readers while at the same time 2) i didn\u2019t want to leave out the readers who are not too familiar with the membership.<\/P>
\n

On to the next post<\/A>, where you\u2019ll find the real substance \ud83d\ude42<\/P><\/p>\n","protected":false},"excerpt":{"rendered":"

digg_url = “http:\/\/blogs.msdn.com\/vbertocci\/archive\/2009\/04\/23\/create-a-minimal-asp-net-membership-website-that-will-come-in-useful-in-another-post.aspx”;digg_title = “Create a Minimal ASP.NET Membership Website (that will come in useful in another post)”;digg_bgcolor = “#FFFFFF”;digg_skin = “normal”; digg_url = undefined;digg_title = undefined;digg_bgcolor = undefined;digg_skin = undefined; This post contains no special considerations or insights, and is just meant to provide a base for the post here. If you…<\/p>\n","protected":false},"author":1,"featured_media":1411,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"footnotes":""},"categories":[9],"tags":[],"class_list":["post-419","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-identity"],"_links":{"self":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/419","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/comments?post=419"}],"version-history":[{"count":0,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/posts\/419\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/media\/1411"}],"wp:attachment":[{"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/media?parent=419"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/categories?post=419"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cloudidentity.com\/blog\/wp-json\/wp\/v2\/tags?post=419"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}