Forums: AD Secured + Anonymous in same app: possible? - Forums

Jump to content

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

AD Secured + Anonymous in same app: possible? Rate Topic: -----

#1 User is offline   Pete K 

  • Advanced Member
  • PipPipPip
  • Group: Members
  • Posts: 171
  • Joined: 05-February 16

Posted 13 September 2017 - 06:30 PM

This is a very common design pattern in our shop: a public-facing data form, along with staff-only admin functions for editing, reporting, etc.

For those who have used AD with ASPRunner.NET, is it possible to mix anonymous access with AD-secured content in the same webapp? So far I haven't figured out a way, and I'm thinking it's not possible since AD won't work with anonymous access set in IIS. So far my solution has been to build a public facing app and a separate admin app, both pointed at the same database. It works, but I'm just wondering if there is a better / more streamlined way. With classic ASP and ASP.net web forms, we could turn on anonymous access on a per-page basis, but that doesn't seem to be the case with MVC. (At least with my very limited understanding of MVC.)

I know we can allow guest logins in ASPR, but that seems a bit cumbersome for the end user, particularly when they are asked repeatedly to sign in.

Any ideas?


----------------------------------------------------------
Pete K.
Web Developer
Fayette County Public Schools | Lexington, Kentucky, USA
0

#2 User is offline   jadach 

  • Advanced Member
  • PipPipPip
  • Group: Members
  • Posts: 312
  • Joined: 26-April 08

Posted 13 September 2017 - 10:33 PM

If the application allows AD users to login, then I assume they are logged into your network where the application is running. How then can an anonymous access point exist? When you say anonymous user, do you mean that literally (any random person from the public) or is it anyone logged into the network? If it is the latter, then your open forms can be allowed using default role access. Then when authorized users actually login, they have more role access. We have done that a lot where I work.
-jerry
0

#3 User is offline   Pete K 

  • Advanced Member
  • PipPipPip
  • Group: Members
  • Posts: 171
  • Joined: 05-February 16

Posted 14 September 2017 - 01:17 PM

View Postjadach, on 13 September 2017 - 06:33 PM, said:

If the application allows AD users to login, then I assume they are logged into your network where the application is running. How then can an anonymous access point exist? When you say anonymous user, do you mean that literally (any random person from the public) or is it anyone logged into the network? If it is the latter, then your open forms can be allowed using default role access. Then when authorized users actually login, they have more role access. We have done that a lot where I work.


Yes, I understand about role-based security but in this case I do mean truly anonymous. Only staff and students have accounts, so parents and other community members needing to complete online forms, etc. need to be able to have access without the need for an AD login. I really didn't think it was possible.


----------------------------------------------------------
Pete K.
Web Developer
Fayette County Public Schools | Lexington, Kentucky, USA
0

#4 User is offline   jadach 

  • Advanced Member
  • PipPipPip
  • Group: Members
  • Posts: 312
  • Joined: 26-April 08

Posted 14 September 2017 - 04:31 PM

In that case I would definitely build a separate public facing application writing to the same database.
-jerry
0

#5 User is offline   Pete K 

  • Advanced Member
  • PipPipPip
  • Group: Members
  • Posts: 171
  • Joined: 05-February 16

Posted 14 September 2017 - 07:14 PM

View Postjadach, on 14 September 2017 - 12:31 PM, said:

In that case I would definitely build a separate public facing application writing to the same database.


Thanks for confirming my intuition. Sometimes it's just helpful to throw something out there and see if you have been overlooking anything.





----------------------------------------------------------
Pete K.
Web Developer
Fayette County Public Schools | Lexington, Kentucky, USA
0

Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic