<\/div>\n
Merhaba,<\/p>\n
Bir \u00f6nceki RoleManager S\u0131n\u0131f\u0131 \u0130le Rol Y\u00f6netimi<\/a> ba\u015fl\u0131kl\u0131 makalemizde uygulama bazl\u0131 rol y\u00f6netimini incelemi\u015f bulunmaktay\u0131z. Bu i\u00e7eri\u011fimizde ise olu\u015fturulan roller odakl\u0131 Sayfalar\u0131 Yetkilendirme(Authorization)<\/em> i\u015flemini ele alaca\u011f\u0131z.<\/p>\n
Her\u015feyden \u00f6nce yetkilendirilmi\u015f sayfalara yetkisi olmayan kullan\u0131c\u0131lar\u0131n eri\u015fmeye \u00e7al\u0131\u015fmas\u0131 durumunda nereye y\u00f6nlendirece\u011fimizi belirtmekle ba\u015flayal\u0131m. Bunun i\u00e7in Startup.cs dosyas\u0131nda a\u015fa\u011f\u0131daki konfig\u00fcrasyonu ger\u00e7ekle\u015ftirmemiz gerekmektedir.<\/p>\n
\r\n    public class Startup\r\n    {\r\n        public IConfiguration Configuration { get; set; }\r\n        public Startup(IConfiguration configuration) => Configuration = configuration;\r\n        public void ConfigureServices(IServiceCollection services)\r\n        {\r\n            services.AddDbContext<AppDbContext>(_ => _.UseSqlServer(Configuration["ConnectionStrings:SqlServerConnectionString"]));\r\n            services.AddIdentity<AppUser, AppRole>(_ =>\r\n            {\r\n                _.Password.RequiredLength = 5; \/\/En az ka\u00e7 karakterli olmas\u0131 gerekti\u011fini belirtiyoruz.\r\n                _.Password.RequireNonAlphanumeric = false; \/\/Alfanumerik zorunlulu\u011funu kald\u0131r\u0131yoruz.\r\n                _.Password.RequireLowercase = false; \/\/K\u00fc\u00e7\u00fck harf zorunlulu\u011funu kald\u0131r\u0131yoruz.\r\n                _.Password.RequireUppercase = false; \/\/B\u00fcy\u00fck harf zorunlulu\u011funu kald\u0131r\u0131yoruz.\r\n                _.Password.RequireDigit = false; \/\/0-9 aras\u0131 say\u0131sal karakter zorunlulu\u011funu kald\u0131r\u0131yoruz.\r\n\r\n                _.User.RequireUniqueEmail = true; \/\/Email adreslerini tekille\u015ftiriyoruz.\r\n                _.User.AllowedUserNameCharacters = "abc\u00e7defghi\u0131jklmno\u00f6pqrs\u015ftu\u00fcvwxyzABC\u00c7DEFGHI\u0130JKLMNO\u00d6PQRS\u015eTU\u00dcVWXYZ0123456789-._@+"; \/\/Kullan\u0131c\u0131 ad\u0131nda ge\u00e7erli olan karakterleri belirtiyoruz.\r\n            }).AddPasswordValidator<CustomPasswordValidation>()\r\n              .AddUserValidator<CustomUserValidation>()\r\n              .AddErrorDescriber<CustomIdentityErrorDescriber>().AddEntityFrameworkStores<AppDbContext>()\r\n              .AddDefaultTokenProviders(); ;\r\n\r\n            services.ConfigureApplicationCookie(_ =>\r\n            {\r\n                _.LoginPath = new PathString("\/User\/Login");\r\n                _.LogoutPath = new PathString("\/User\/Logout");\r\n                _.Cookie = new CookieBuilder\r\n                {\r\n                    Name = "AspNetCoreIdentityExampleCookie", \/\/Olu\u015fturulacak Cookie'yi isimlendiriyoruz.\r\n                    HttpOnly = false, \/\/K\u00f6t\u00fc niyetli insanlar\u0131n client-side taraf\u0131ndan Cookie'ye eri\u015fmesini engelliyoruz.\r\n                    Expiration = TimeSpan.FromMinutes(2), \/\/Olu\u015fturulacak Cookie'nin vadesini belirliyoruz.\r\n                    SameSite = SameSiteMode.Lax, \/\/Top level navigasyonlara sebep olmayan requestlere Cookie'nin g\u00f6nderilmemesini belirtiyoruz.\r\n                    SecurePolicy = CookieSecurePolicy.Always \/\/HTTPS \u00fczerinden eri\u015filebilir yap\u0131yoruz.\r\n                };\r\n                _.SlidingExpiration = true; \/\/Expiration s\u00fcresinin yar\u0131s\u0131 kadar s\u00fcre zarf\u0131nda istekte bulunulursa e\u011fer geri kalan yar\u0131s\u0131n\u0131 tekrar s\u0131f\u0131rlayarak ilk ayarlanan s\u00fcreyi tazeleyecektir.\r\n                _.ExpireTimeSpan = TimeSpan.FromMinutes(2); \/\/CookieBuilder nesnesinde tan\u0131mlanan Expiration de\u011ferinin varsay\u0131lan de\u011ferlerle ezilme ihtimaline kar\u015f\u0131n tekrardan Cookie vadesi burada da belirtiliyor.\r\n                _.AccessDeniedPath = new PathString("\/authority\/page");\r\n            });\r\n\r\n            services.AddMvc();\r\n        }\r\n\r\n        public void Configure(IApplicationBuilder app, IHostingEnvironment env)\r\n        {\r\n            if (env.IsDevelopment())\r\n                app.UseDeveloperExceptionPage();\r\n\r\n            app.UseStatusCodePages();\r\n            app.UseStaticFiles();\r\n            app.UseAuthentication();\r\n            app.UseMvc(_ => _.MapRoute("Default", "{controller=Home}\/{action=Index}\/{id?}"));\r\n        }\r\n    }\r\n<\/pre>\n37. sat\u0131ra g\u00f6z atarsan\u0131z e\u011fer “AccessDeniedPath” \u00f6zelli\u011fi sayesinde yetkilendirilmi\u015f sayfaya eri\u015fmeye \u00e7al\u0131\u015fan yetkisiz kullan\u0131c\u0131lar\u0131 “\/authority\/page” adresine y\u00f6nlendirmekteyiz.<\/p>\nBu i\u015flemden sonra yap\u0131lmas\u0131 gereken tek i\u015f yetkilendirilecek olan sayfalar\u0131n a\u015fa\u011f\u0131daki gibi Authorize attribute’u ile i\u015faretlenmesidir.
\n<\/a>
\n<\/a>
\nYukar\u0131daki ekran g\u00f6r\u00fcnt\u00fcs\u00fcne dikkat ederseniz e\u011fer oturumu a\u00e7\u0131k olan kullan\u0131c\u0131n\u0131n yetkileri de\u011fi\u015ftirildi\u011fi an tekrardan oturumunu yenilemesi gerekmektedir. Aksi taktirde mevcut oturum boyunca eski yetkileriyle s\u00fcrece devam edecektir.<\/p>\n
Evet… Yaz\u0131 dizimizin bu makalesinde de rol bazl\u0131 yetkilendirme hakk\u0131nda son noktay\u0131 koymu\u015f bulunuyoruz. Sonraki makalelerimizde Claims Bazl\u0131 Yetkilendirme(Claims Based Authorization) \u00fczerine konu\u015fuyor olaca\u011f\u0131z. O halde \u015fimdilik g\u00f6r\u00fc\u015fmek \u00fczere diyelim…<\/p>\n
\u0130lgilenenlerin faydalanmas\u0131 dile\u011fiyle…
\n\u0130yi \u00e7al\u0131\u015fmalar…<\/p>\n
Not : \u00d6rnek projeyi indirmek i\u00e7in buraya t\u0131klay\u0131n\u0131z<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"
Merhaba, Bir \u00f6nceki RoleManager S\u0131n\u0131f\u0131 \u0130le Rol Y\u00f6netimi ba\u015fl\u0131kl\u0131 makalemizde uygulama bazl\u0131 rol y\u00f6netimini incelemi\u015f bulunmaktay\u0131z. Bu i\u00e7eri\u011fimizde ise olu\u015fturulan roller odakl\u0131 Sayfalar\u0131 Yetkilendirme(Authorization) i\u015flemini ele alaca\u011f\u0131z. Her\u015feyden \u00f6nce yetkilendirilmi\u015f sayfalara yetkisi olmayan kullan\u0131c\u0131lar\u0131n...<\/p>\n","protected":false},"author":1,"featured_media":11583,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2668,2656,2811,2832,2898],"tags":[2952,3017,2958,3016],"class_list":["post-12100","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-asp-net-core-2","category-asp-net-core-2-mvc","category-asp-net-core-2-1","category-asp-net-core-2-2","category-asp-net-core-3-0","tag-asp-net-core-identity","tag-asp-net-core-identity-authorization","tag-authorization","tag-sayfalari-yetkilendirme"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/posts\/12100","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/comments?post=12100"}],"version-history":[{"count":10,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/posts\/12100\/revisions"}],"predecessor-version":[{"id":12114,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/posts\/12100\/revisions\/12114"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/media\/11583"}],"wp:attachment":[{"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/media?parent=12100"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/categories?post=12100"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gencayyildiz.com\/blog\/wp-json\/wp\/v2\/tags?post=12100"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}