asp.net mvc - On Which Tier should user authentication should exist in n-tier website -

-

i went through different architecture books such one: microsoft application architecture guide, 2nd edition , building new n-tier website asp.net mvc presentation layer. question is, if use asp.net identity, on tier/layer should implement user authentication?

i thought should in cross cutting concerns, because need check if user authorized or authenticated access functions plus may use user name on many tiers, such business, services , presentation layer.

and thought better put in presentation layer specially because presentation layer mvc , easy deal asp identity there , allow me user [authorize] , [allowanonymous] easily.

i know question answer depend on many other factors trying here achieve best practice, need point of view , discuss it.

there quite few similar questions here on stackoverflow, , many answers. here view on matter.

you have separate abstraction implementation.

the abstraction (an interface) defines questions need able ask authentication service. interface used other parts of application going use authentication service. means abstraction must defined somewhere can referenced other parts of application. suggestion put in business layer, since methods in interface (in other words 'questions want ask service') business related. suggestion put in core layer (if have one).

that leaves implementation of interface. implement in easiest place can works. can in business layer, fine. need use identity classes mvc, too, place there. doesn't matter put it, since isn't used directly.

of course, make work need use little dependency injection, register implementation interface.


Comments

Post a Comment

Popular posts from this blog

PHP DOM loadHTML() method unusual warning -

-
i had following code works fine on localhost: $document = new domdocument(); $document->loadhtml($p_result); $form = $document->getelementsbytagname('form')->item(0); // code continues using $form variable after same code updated on outside server, loadhtml() failed , issued warning. warning: domdocument::loadhtml() expects parameter 1 valid path, string given in path/name/to/script.php returned null instead of object code pretty gets fatal error. note contents of $p_result absolutely same on outside server , on localhost. but why displays kind of warning , why not work? doesn't loadhtml() expects argument 1 string in first place? why method expects parameter 1 valid path ? just make clear i'm not calling loadhtmlfile() , i'm calling loadhtml() . thanks. you're affected one of php bugs . issue present in php 5.6.8 , 5.6.9. have affected php version on server, , bug-free version on localhost. the bug forbids null
Read more

python - How to create jsonb index using GIN on SQLAlchemy? -

-
here's current code creating index jsonb. index("mytable_data_idx_id_key", mytable.data['id'].astext, postgresql_using='gin') but got error. sqlalchemy.exc.programmingerror: (psycopg2.programmingerror) data type text has no default operator class access method "gin" hint: must specify operator class index or define default operator class data type. [sql: "create index event_data_idx_id_key on event using gin ((data ->> 'id'))"] is there way create index on sqlalchemy? the postgresql specific sqlalchemy docs @ http://docs.sqlalchemy.org/en/latest/dialects/postgresql.html#operator-classes mention postgresql_ops dictionary provide "operator class" used postgresql, , provide example illustrating use: index('my_index', my_table.c.id, my_table.c.data, postgresql_ops={ 'data': 'text_pattern_ops',
Read more

c# - TransactionScope not rolling back although no complete() is called -

-
i'm using transactionscope rollback transaction fail bool errorreported = false; action<importerrorlog> newerrorcallback = e => { errorreported = true; errorcallback(e); }; using (var transaction = new transactionscope()) { foreach (importtaskdefinition task in taskdefinition) { loader.load(streamfile, newerrorcallback, task.destinationtable, processingtaskid); } if (!errorreported) transaction.complete(); } i'm sure there no transactionscope started ahead or after code. i'm using entity framework insert in db. regardless state of errorreported transaction never rolled in case of error. what missing ? transactionscope sets transaction.current . that's does. wants transacted must @ property. i believe ef each time connection opened reason. probably, connection open when scope installed. open connection inside of scope or enlist manually. ef has nasty "design decision": default opens
Read more