Our application requires Active Directory for users to access it. Our goal is to split the business logic and the security.
Here is what I try to do but did not succeed yet :
-
Connect to Active Directory via
web.config
. -
Specify groups needed for each
.aspx
page in the web.config file. (e.g.:index.aspx = admin, users
) -
Redirect the user to an error page if user's groups do not match the expected credentials.
-
Do all this without adding any code in my actual pages (to split business logic from security).
What do you suggest for that ? I found many examples on the web about Active Directory but they were not doing what I wanted.
Best Answer
Have you tried something like this in your web.config file.