是否有适用于.NET(更喜欢C#/ MVC)的开源解决方案,允许在私有滚动Beta场景中使用简单的锁定和邀请系统?
除非他们已登录(可能使用全局动作过滤器),否则用户将被重定向到启动页面...
以下是其他几种类似的解决方案:
https://github.com/ejdraper/exclusivity(Ruby)
https://github.com/pragmaticbadger/django-privatebeta(Python)
答案 0 :(得分:1)
我为ASP.NET MVC编写了一个小的“访问控制”过滤器,它是配置文件驱动的。我可以在web.config中切换一个标志,这会将所有未注册的用户移动到特定页面,除非他们专门请求登录或注销操作。您可以相应地调整您的实施,而不会有太多麻烦。
过滤属性
public class AccessControlAttribute : AuthorizeAttribute
{
public bool AccessControlEnabled {
get { return AccessControlSection.Settings != null; }
}
public bool LockoutEnabled {
get { return AccessControlEnabled && AccessControlSection.Settings.ForceLockout != null && AccessControlSection.Settings.ForceLockout.Enabled; }
}
public AccessControlAttribute() {
if (LockoutEnabled) {
Roles = AccessControlSection.Settings.ForceLockout.AllowRoles;
Users = AccessControlSection.Settings.ForceLockout.AllowUsers;
}
}
protected override void HandleUnauthorizedRequest(AuthorizationContext filterContext) {
if (filterContext.IsChildAction || ApproveLockoutAction(filterContext))
return;
if (LockoutEnabled && !string.IsNullOrEmpty(AccessControlSection.Settings.ForceLockout.DefaultPage)) {
filterContext.HttpContext.Response.Redirect(AccessControlSection.Settings.ForceLockout.DefaultPage, false);
return;
}
base.HandleUnauthorizedRequest(filterContext);
}
private static bool ApproveLockoutAction(AuthorizationContext filterContext) {
var forceLockout = AccessControlSection.Settings.ForceLockout;
if (forceLockout == null || !forceLockout.Enabled)
return true;
if (string.IsNullOrEmpty(forceLockout.LogOnUrl) || string.IsNullOrEmpty(forceLockout.LogOffUrl))
return false;
if (filterContext.HttpContext.Request.AppRelativeCurrentExecutionFilePath.Equals(forceLockout.LogOnUrl, StringComparison.OrdinalIgnoreCase)
|| filterContext.HttpContext.Request.AppRelativeCurrentExecutionFilePath.Equals(forceLockout.LogOffUrl, StringComparison.OrdinalIgnoreCase)) {
return true;
}
return false;
}
}
配置处理程序
public class AccessControlSection : ConfigurationSection
{
public const string SectionName = "accessControl";
public const string ForceLockoutKeyName = "forceLockout";
private static AccessControlSection _settings;
public static AccessControlSection Settings {
get {
if (_settings == null) {
object section = ConfigurationManager.GetSection(SectionName);
if (section != null)
_settings = section as AccessControlSection;
}
return _settings;
}
}
[ConfigurationProperty(ForceLockoutKeyName)]
public ForceLockoutElement ForceLockout {
get { return (ForceLockoutElement)this[ForceLockoutKeyName]; }
set { this[ForceLockoutKeyName] = value; }
}
}
public class ForceLockoutElement : ConfigurationElement
{
public const string AllowRolesKeyName = "allowRoles";
public const string AllowUsersKeyName = "allowUsers";
public const string DefaultPageKeyName = "defaultPage";
public const string EnabledKeyName = "enabled";
public const string LogOnUrlKeyName = "logOnUrl";
public const string LogOffUrlKeyName = "logOffUrl";
[ConfigurationProperty(AllowRolesKeyName, DefaultValue = "Admin")]
public string AllowRoles {
get { return (string)this[AllowRolesKeyName]; }
set { this[AllowRolesKeyName] = value; }
}
[ConfigurationProperty(AllowUsersKeyName)]
public string AllowUsers {
get { return (string)this[AllowUsersKeyName]; }
set { this[AllowUsersKeyName] = value; }
}
[ConfigurationProperty(DefaultPageKeyName, DefaultValue = "~/offline.htm")]
public string DefaultPage {
get { return (string)this[DefaultPageKeyName]; }
set { this[DefaultPageKeyName] = value; }
}
[ConfigurationProperty(LogOnUrlKeyName, DefaultValue = "~/auth/logon")]
public string LogOnUrl {
get { return (string)this[LogOnUrlKeyName]; }
set { this[LogOnUrlKeyName] = value; }
}
[ConfigurationProperty(LogOffUrlKeyName, DefaultValue = "~/auth/logoff")]
public string LogOffUrl {
get { return (string)this[LogOffUrlKeyName]; }
set { this[LogOffUrlKeyName] = value; }
}
[ConfigurationProperty(EnabledKeyName, DefaultValue = true)]
public bool Enabled {
get { return (bool)this[EnabledKeyName]; }
set { this[EnabledKeyName] = value; }
}
public string[] AllowedUsersArray {
get {
if (string.IsNullOrEmpty(AllowUsers))
return null;
return AllowUsers.Split(new[] {','}, StringSplitOptions.RemoveEmptyEntries);
}
}
public string[] AllowRolesArray {
get {
if (string.IsNullOrEmpty(AllowRoles))
return null;
return AllowRoles.Split(new[] { ',' }, StringSplitOptions.RemoveEmptyEntries);
}
}
}
示例Web.config
<configuration>
<configSections>
<section name="accessControl" type="MyWebsite.Config.AccessControlSection, MyWebsite" />
</configSections>
<accessControl>
<forceLockout enabled="true" defaultPage="~/inviteonly.htm"
logOnUrl="~/logon"
logOffUrl="~/logoff"
allowRoles="Members" />
</accessControl>
</configuration>
通过上述配置,任何未登录或未成为“成员”角色成员的用户都将被重定向到“〜/ inviteonly.htm”。您可以通过逗号分隔'allowRoles'和'allowUsers'属性中的值来指定多个允许的角色和/或用户。
AccessControlAttribute
必须注册为全局过滤器,或者放在BaseController类定义上以使一切正常工作。