public override void OnAuthorization(AuthorizationContext filterContext) { if (string.IsNullOrEmpty(SessionPersister.Login)) { filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Account", action = "Index" })); } else { StudentAccountModel am = new StudentAccountModel(); CustomPrincipal cp = new CustomPrincipal(am.Find(SessionPersister.Login)); if (!cp.IsInRole(Roles)) { filterContext.Result = new RedirectToRouteResult(new RouteValueDictionary(new { controller = "Home", action = "Index" })); } } }
public ActionResult Login(string login, string password) { StudentAccountModel am = new StudentAccountModel(); if (ModelState.IsValid) { Account acc = am.Login(login, password); if (acc != null) { SessionPersister.Login = acc.Login; Session.Add("RolesOfPerson", acc.Roles); return(View("../Student/Index")); } else { return(View()); } } else { return(View()); } }