Hi,
The scenario is as follows: I have many users who can work for many companies, each user has distincts access depending on the company they work for.
I want to provide my web page users the option to log to different companies so the login form request for three parameters: UserName, Password and CompanyName. I extend the AuthorizeAttribute and then override the AuthorizeCore to allow access to the web site, however the httpContext params only returns me the httpContext.User.Identity which only gets the UserName. I need to catch the CompanyName so I will be able allow/deny access to this user for such company. How can I implement this using asp membership?
Thanks in advance