March 9, 2015
The CAS authentication service is a single sign-on solution for web services used by a number of universities. When authenticating with CAS, the server has the option of embedding a list of user roles inside the encrypted authentication cookie. In this tutorial, I’ll explain how to write a custom role provider in ASPASP Dot Net MVC applications to extract the roles passed from the authentication server and integrate them with ASP.NET role authorization.
If you don’t already have your app configured to use CAS authentication, check out my post on getting started with the .NET CAS Client.