MVC5_学习笔记_2_Authorize

/* GitHub stylesheet for MarkdownPad (http://markdownpad.com) */
/* Author: Nicolas Hery - http://nicolashery.com */
/* Version: b13fe65ca28d2e568c6ed5d7f06581183df8f2ff */
/* Source: https://github.com/nicolahery/markdownpad-github */

/* RESET

=============================================================================*/

html, body, div, span, applet, object, iframe, h1, h2, h3, h4, h5, h6, p, blockquote, pre, a, abbr, acronym, address, big, cite, code, del, dfn, em, img, ins, kbd, q, s, samp, small, strike, strong, sub, sup, tt, var, b, u, i, center, dl, dt, dd, ol, ul, li, fieldset, form, label, legend, table, caption, tbody, tfoot, thead, tr, th, td, article, aside, canvas, details, embed, figure, figcaption, footer, header, hgroup, menu, nav, output, ruby, section, summary, time, mark, audio, video {

margin: 0;

padding: 0;

border: 0;

}

/* BODY

=============================================================================*/

body {

font-family: Helvetica, arial, freesans, clean, sans-serif;

font-size: 14px;

line-height: 1.6;

color: #333;

background-color: #fff;

padding: 20px;

max-width: 960px;

margin: 0 auto;

}

body>*:first-child {

margin-top: 0 !important;

}

body>*:last-child {

margin-bottom: 0 !important;

}

/* BLOCKS

=============================================================================*/

p, blockquote, ul, ol, dl, table, pre {

margin: 15px 0;

}

/* HEADERS

=============================================================================*/

h1, h2, h3, h4, h5, h6 {

margin: 20px 0 10px;

padding: 0;

font-weight: bold;

-webkit-font-smoothing: antialiased;

}

h1 tt, h1 code, h2 tt, h2 code, h3 tt, h3 code, h4 tt, h4 code, h5 tt, h5 code, h6 tt, h6 code {

font-size: inherit;

}

h1 {

font-size: 28px;

color: #000;

}

h2 {

font-size: 24px;

border-bottom: 1px solid #ccc;

color: #000;

}

h3 {

font-size: 18px;

}

h4 {

font-size: 16px;

}

h5 {

font-size: 14px;

}

h6 {

color: #777;

font-size: 14px;

}

body>h2:first-child, body>h1:first-child, body>h1:first-child+h2, body>h3:first-child, body>h4:first-child, body>h5:first-child, body>h6:first-child {

margin-top: 0;

padding-top: 0;

}

a:first-child h1, a:first-child h2, a:first-child h3, a:first-child h4, a:first-child h5, a:first-child h6 {

margin-top: 0;

padding-top: 0;

}

h1+p, h2+p, h3+p, h4+p, h5+p, h6+p {

margin-top: 10px;

}

/* LINKS

=============================================================================*/

a {

color: #4183C4;

text-decoration: none;

}

a:hover {

text-decoration: underline;

}

/* LISTS

=============================================================================*/

ul, ol {

padding-left: 30px;

}

ul li > :first-child,

ol li > :first-child,

ul li ul:first-of-type,

ol li ol:first-of-type,

ul li ol:first-of-type,

ol li ul:first-of-type {

margin-top: 0px;

}

ul ul, ul ol, ol ol, ol ul {

margin-bottom: 0;

}

dl {

padding: 0;

}

dl dt {

font-size: 14px;

font-weight: bold;

font-style: italic;

padding: 0;

margin: 15px 0 5px;

}

dl dt:first-child {

padding: 0;

}

dl dt>:first-child {

margin-top: 0px;

}

dl dt>:last-child {

margin-bottom: 0px;

}

dl dd {

margin: 0 0 15px;

padding: 0 15px;

}

dl dd>:first-child {

margin-top: 0px;

}

dl dd>:last-child {

margin-bottom: 0px;

}

/* CODE

=============================================================================*/

pre, code, tt {

font-size: 12px;

font-family: Consolas, "Liberation Mono", Courier, monospace;

}

code, tt {

margin: 0 0px;

padding: 0px 0px;

white-space: nowrap;

border: 1px solid #eaeaea;

background-color: #f8f8f8;

border-radius: 3px;

}

pre>code {

margin: 0;

padding: 0;

white-space: pre;

border: none;

background: transparent;

}

pre {

background-color: #f8f8f8;

border: 1px solid #ccc;

font-size: 13px;

line-height: 19px;

overflow: auto;

padding: 6px 10px;

border-radius: 3px;

}

pre code, pre tt {

background-color: transparent;

border: none;

}

kbd {

-moz-border-bottom-colors: none;

-moz-border-left-colors: none;

-moz-border-right-colors: none;

-moz-border-top-colors: none;

background-color: #DDDDDD;

background-image: linear-gradient(#F1F1F1, #DDDDDD);

background-repeat: repeat-x;

border-color: #DDDDDD #CCCCCC #CCCCCC #DDDDDD;

border-image: none;

border-radius: 2px 2px 2px 2px;

border-style: solid;

border-width: 1px;

font-family: "Helvetica Neue",Helvetica,Arial,sans-serif;

line-height: 10px;

padding: 1px 4px;

}

/* QUOTES

=============================================================================*/

blockquote {

border-left: 4px solid #DDD;

padding: 0 15px;

color: #777;

}

blockquote>:first-child {

margin-top: 0px;

}

blockquote>:last-child {

margin-bottom: 0px;

}

/* HORIZONTAL RULES

=============================================================================*/

hr {

clear: both;

margin: 15px 0;

height: 0px;

overflow: hidden;

border: none;

background: transparent;

border-bottom: 4px solid #ddd;

padding: 0;

}

/* TABLES

=============================================================================*/

table th {

font-weight: bold;

}

table th, table td {

border: 1px solid #ccc;

padding: 6px 13px;

}

table tr {

border-top: 1px solid #ccc;

background-color: #fff;

}

table tr:nth-child(2n) {

background-color: #f8f8f8;

}

/* IMAGES

=============================================================================*/

img {

max-width: 100%

}

1. 新建一个项目,选择MVC程序,选择Individual UserAccounts

2. 在_Layout中插入了一个@Html.Partial("_LoginPartial")

3. 在_LoginPartial中通过Request.IsAuthenticated判断是否已登录,

    若为true通过User.Identity.GetUserName()显示用户名

    若为False则显示登录和注册

    <ul class="nav navbar-nav navbar-right">

        <li>@Html.ActionLink("注册", "Register", "Account", routeValues: null, htmlAttributes: new { id = "registerLink" })</li>

        <li>@Html.ActionLink("登录", "Login", "Account", routeValues: null, htmlAttributes: new { id = "loginLink" })</li>

    </ul>

Authorize_Identity

1. 在 HomeController上插入[Authorize]表示HomeController需要登录权限才能访问

2. 若在Action插入[Authorize]则表示当前Action需要登录才能访问

3. 若插入[Authorize(Roles="Admin")] 表示拥有"Admin"权限的用户才可以访问

4. 若插入[Authorize(User="Jack,Kate")] 表示只有Jack或Kate的才可以访问

5. 若插入[AllowAnonymous]表示允许匿名访问

6. 若原本已通过CodeFirst生成数据库,之后修改了数据库连接串中的数据库名,重新运行会生存新的数据库,此时需要先关闭VS,并到项目文件夹中删除数据库文件,在运行程序会报错说找不到数据库,这时就需要在View-Sql Server Object Explorer中卸载该数据库,在重新运行即可

创建用户并添加用户权限

1. 微软通过UserManager类进行用户管理(默认为管理ApplicationUser类,该类继承自IdentityUser)通过RoleManager(默认为管理ApplicationRole类,继承自IdentityRole)类进行权限管理,在Manager和DbContext通过一个Store进行交换数据,类似一个三层架构,需要一个

    ```UserManager:var userManager = new UserManager<ApplicationUser>(new UserStore<ApplicationUser>(new ApplicationDbContext()));

    RoleManager:var roleManager = new RoleManager<IdentityRole>(new RoleStore<IdentityRole>(new ApplicationDbContext()));```

2. 如需要对用户进行扩展,可以直接写在ApplicationUser类中添加需要的属性

3. 对一个新的用户进行权限管理:

    1. 先创建一个容器 var userStore = new UserStore<ApplicationUser>(ApplicationDbContext()) ;//讲数据上下文放入容器中

    2. 创建一个管理实例 var userManager = UserManager<ApplicationUser>(userStore);//将容器放入里面

    3. 生成一个用户 var user = ApplicationUser { UserName= "Jack" , EMail = "Jack@Test.com" };

    4. 通过userManager创建用户 userManager.Create(user,"password");//注意密码需要符合规则,否则会导致用户创建失败

    5. 创建一个权限管理 步骤和创建用户一样 通过创建一个容器 讲容器放入权限管理对象中

    6. var roleStore = new RoleStore<IdentityRole>(ApplicationDbContext());

    7. var roleManager = new RoleManager<IdentityRole>

    8. 通过roleManager创建一个新的用户权限 roleManager.Create(new IdentityRole( Name = { "Admin" }));

    9. 最后通过userManager给用户赋权限 userManager.AddToRole(user.Id,"Admin");

    10. 用户权限就复制完毕,只需通过不同的[Authorize]标签来限制不同身份或用户所做的事即可

微软生成权限关系