0
yefim created
In our application we use an authorization model where user has one or more "profiles" and can switch from one to another. In turn, a profile represents one or more role, along with "row level security" (data access scope) filtering configuration. Apparently, relations between User and Roles -> permissions go deep into .Net Zero authorization implementation and I suspect may be challenging to modify. Please advise.
1 Answer(s)
-
0
Hi @yefim
You can store user's selected profile in the claims and filter the roles accordingly by overriding https://github.com/aspnetboilerplate/aspnetboilerplate/blob/dev/src/Abp.ZeroCore/Authorization/Users/AbpUserStore.cs#L419 in the UserStore.cs in your project.
