Pro ASP.NET MVC 4, Fourth Edition

CHAPTER 11 SportsStore: Security & Finishing Touches

In the previous chapter, we added support for administering the SportsStore application, and it will not have escaped your attention that anyone would be able to modify the product catalog if we deployed the application right now. All someone would need to know is that the administration features are available using the Admin/Index URL. In this chapter, we are going to show you how to prevent random people from using the administration functions by password-protecting access to the entire Admin controller.

Once we have the security in place, we will complete the SportsStore app by adding support ...

Get Pro ASP.NET MVC 4, Fourth Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Pro ASP.NET MVC 4, Fourth Edition by

CHAPTER 11

SportsStore: Security & Finishing Touches

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly