Comments on: ASP.NET MVC Using Forms Authentication With LDAP

By: Chris Jackson

Chris Jackson — Tue, 13 Dec 2011 14:46:02 +0000

@Daniel Ma:
In the AppSettings of the Web.Config, you need to add a key/value pair for that setting…something like:

By: Daniel Ma

Daniel Ma — Fri, 09 Dec 2011 03:03:22 +0000

Sorry but i’m missing something,
_userRepository = New UserRepository(ConfigurationManager.AppSettings(“LDAPServer”)
How to set LDAPServer config in web.config?

By: Chris Jackson

Chris Jackson — Tue, 16 Aug 2011 19:42:51 +0000

@Carlos
This example was written with MVC 1, but it should work still in MVC 3 using the Razor views. The view shouldn’t matter as far as the example goes, your field names in HTML will need to match the parameter names being passed into the Logon POST method…

userName, password, rememberMe, and returnUrl.

…if your field names match the parameter names (if you manually type the HTML fields), MVC will bind them for you. You could also create the Razor view with a class like User and then pass a user object into your Logon POST method, but you would have to add the additional properties for returnUrl and rememberMe.

By: Carlos

Carlos — Tue, 16 Aug 2011 18:30:36 +0000

How to add a view “login” with “razor” and what class would be:

User, or FormsAut UserRepository ..

Thanks
GREETINGS FROM MÉXICO

By: Chris Jackson

Chris Jackson — Thu, 04 Aug 2011 14:28:03 +0000

@Hugh
Yep, sometimes you work in the languages dictated by your company and the others you work with. We have since moved on to use C# and it is much nicer, but I don’t look down on those who use VB because sometimes you don’t have a choice.

By: Hugh

Hugh — Thu, 23 Jun 2011 19:27:39 +0000

Visual Basic, really?

By: Arnold Smith

Arnold Smith — Thu, 20 Jan 2011 05:52:57 +0000

Nice article. Thanks!

By: Lyle

Lyle — Tue, 02 Nov 2010 04:09:39 +0000

Hey Chris! Good article, nice site. If there is a way you could let JeffKirby know that I would love to see his C# code I’d really appreciate it!

By: Chris Jackson

Chris Jackson — Mon, 07 Jun 2010 16:06:01 +0000

@JeffKirby
The Authorize attribute should work because the code in the global.asax is creating a new GenericPrincipal using the list of groups stored in the cookie and then passing it into the user context.

The group names should match those you create in Active Directory. I have noticed that the built-in groups do not show in this list. I have had to use my own custom groups.

If there are spaces in the group names, that may be the problem. Maybe the IsInRole trims the group passed into it and the Authorize atribute does not? Not sure.

If you found another way that you prefer, that’s great! The nice thing about programming is there’s about a million ways to do something and you get to be creative in coming up with your answer.

By: JeffKirby

JeffKirby — Mon, 07 Jun 2010 01:16:52 +0000

I should also mention that negates the need to mess with the user context at all.