Asp.net mvc user management

Question

In asp.net mvc default application you get he account controller which enable user registration, log in, log out and changing password.

I was wondering is it possible to implement litle more like enabling administrator to delete some user or give some user different roles like in asp.net configuration where you create user, roles and asign roles to users?

I already figured out and extend profile for users, so now they have much more infos and profile picture.

If you have any experience or examples of user management in asp.net mvc.

Answer 1

Although a bit outdated, this project maybe can give you a few hints on how to implement membership administration in ASP.NET MVC:

Asp.Net MVC Membership Starter Kit

Quote

What is the Asp.Net MVC Membership Starter Kit?

The starter kit currently consists of two things:

1. A sample website containing the controllers, models, and views needed to administer users & roles.
2. A library that provides testable interfaces for administering users & roles and concrete implementations of those interfaces that wrap the built-in Asp.Net Membership & Roles providers.

Out of the box, the starter kit gives you the following features:

• List of Users
• List of Roles
• User Account Info
• Change Email Address
• Change a User's Roles

Update

For restricting certain operations to specific user roles, you can create these roles using the project I mentioned earlier, and then decorate your own application's controllers and/or actions with an Authorize attribute, referencing the desired roles:

[Authorize(Roles = "Administrator, HR")]
public ActionResult DeleteUser(int UserId)
{
    // do something
}

This would prevent users that are not Administrator or HR to delete users.