tag:blogger.com,1999:blog-15136575.post114673001888081859..comments2023-10-17T12:00:16.772+01:00Comments on Code rant: Where do role-based security checks go in my Application?Mike Hadlowhttp://www.blogger.com/profile/16441901713967254504noreply@blogger.comBlogger2125tag:blogger.com,1999:blog-15136575.post-79660433446517515962008-08-19T08:53:00.000+01:002008-08-19T08:53:00.000+01:00Hi Matt,So you have a conceptual business relation...Hi Matt,<BR/><BR/>So you have a conceptual business relationship between role and action. So in your domain model I would expect to see an Actions collection on the Role entity. Then you can populate your sidebar by iterating CurrentUser.Role.Actions.Mike Hadlowhttps://www.blogger.com/profile/16441901713967254504noreply@blogger.comtag:blogger.com,1999:blog-15136575.post-89363552673672243042008-08-18T16:44:00.000+01:002008-08-18T16:44:00.000+01:00Interesting read, I like the approach, but I have ...Interesting read, I like the approach, but I have a quick question. In my current application, I'm using a sidebar of sorts that contains available actions for a given screen. I want to be able to hide/show these actions based on the users role. So, it's not just a command button that I want to bind visible to CanEdit, but I don't want to add "Save" in the first place. Have you any thoughts on how you might implement such a solution?Matthttps://www.blogger.com/profile/15890172631983174412noreply@blogger.com