Reputation: 559
Restrict access to different site sections by ip
In our MVC 3 solution we have a site with many sections. Customer want to have a possibility to manage access to each section by IP address(from admin part). What are the standard ways of implementing this requirements? I see, smth like this: every section has a list of wildcards, that represent IP addresses, and then we we somehow validate IP address using this wildcards.
Upvotes: 2
Views: 450
Answers (1)
Reputation: 5134
I would suggest not using directly IP addresses in your code - these tend to change from time to time. Do create system of "zones", similar like in many personal firewalls.
My solution would be basically like this :
Create custom authorization attribute
public class AuthorizeZone: AuthorizeAttribute
{
private string _zone;
public AuthorizeZone(string zoneName)
{
_zone = zoneName;
}
protected override bool AuthorizeCore(HttpContextBase httpContext)
{
var zone = GetZoneIpMappingsFromXMLorDB_IdeallyCached(_zone);
return zone.ContainsIp(httpContext.Request.UserHostAddress); // implement by simple list or ip-mask
}
}
you then use it like this
[AuthorizeZone("Intranet")]
public ActionResult Foo()
{}
Your zones definitions is up to you, use XML, database, whatever...
Upvotes: 3
Related Questions
- ASP.Net How to limit access to a particular IP address to a particular page through web.config file (.htaccess similar)?
- Restrict access to a specific controller by IP address in ASP.NET MVC Beta
- How to allow only a group of IPs access the site from code behind using ASP.NET?
- make site available only from given ip
- MVC restrict access based on IP
- Restricting access to IP addresses on a web application
- IIS/ASP.NET MVC: Dynamic IP Address Restrictions on specific folder
- restrict access to mvc controller using ip address
- how to block certain ip's (users) to access my website?
- Blocking access to site by banned IP addresses