You're reading from Real-World Web Development with .NET 9 Build websites and services using mature and proven ASP.NET Core MVC, Web API, and Umbraco CMS

Product type Paperback

Published in Dec 2024

Publisher Packt

ISBN-13 9781835880388

Length 578 pages

Edition 1st Edition

Languages

Tools

.NET Core

Concepts

Server Side Web Development

Author (1):

Mark J. Price

View More author details

Table of Contents (17) Chapters

Preface

1. Introducing Web Development Using Controllers FREE CHAPTER

2. Building Websites Using ASP.NET Core MVC

3. Model Binding, Validation, and Data Using EF Core

4. Building and Localizing Web User Interfaces

5. Authentication and Authorization

6. Performance Optimization Using Caching

7. Web User Interface Testing Using Playwright

8. Configuring and Containerizing ASP.NET Core Projects

9. Building Web Services Using ASP.NET Core Web API

10. Building Web Services Using ASP.NET Core OData

11. Building Web Services Using FastEndpoints

12. Web Service Integration Testing

13. Web Content Management Using Umbraco

14. Customizing and Extending Umbraco

15. Epilogue

16. Index

Download the free PDF and supplementary content

Securing controller action methods using filters

You might want to ensure that one particular action method of a controller class can only be called by members of certain security roles. You do this by decorating the method with the [Authorize] attribute, as described in the following list:

[Authorize]: Only allow authenticated (non-anonymous, logged-in) visitors to access this action method.
[Authorize(Roles = "Sales,Marketing")]: Only allow visitors who are members of the specified role(s) to access this action method.

Let's see an example:

In HomeController.cs, import the namespace for working with authorization, as shown in the following code:

using Microsoft.AspNetCore.Authorization; // To use [Authorize].

Add an attribute to the ModelBinding method to only allow access to logged-in users who are members of a group/role named Administrators, as shown highlighted in the following code:

[Authorize(Roles = "Administrators")]
public IActionResult ModelBinding...

The rest of the chapter is locked

Tech Concepts

Programming languages

Tech Tools

Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.

Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.

50+ new titles added per month and exclusive early access to books as they are being written.

You're reading from Real-World Web Development with .NET 9 Build websites and services using mature and proven ASP.NET Core MVC, Web API, and Umbraco CMS

Table of Contents (17) Chapters

Securing controller action methods using filters

Authors (1)

Personalised recommendations for you

You're reading from Real-World Web Development with .NET 9 Build websites and services using mature and proven ASP.NET Core MVC, Web API, and Umbraco CMS

Table of Contents (17) Chapters

Securing controller action methods using filters

Authors (1)

Personalised recommendations for you

Create a Free Account To Continue Reading

Sign in to activate your 7-day free access