I'm in the process of building a website (MVP) for a client of mine. I'm looking for an expert in .NET core 3.1 who can help implement row level security with EF. The site already has user registration and login built in with .NET Core Identity and JWT. I already got users and roles created. I need to expand the security model in a way I can assign multiple clients to a user. After login the user should only see the assigned client's information. I'm looking to accomplish this by the use of Global Query Filters. Client and User model exists. Need help to add Client to User assignment model and then implement the query filter. If this projects is a success there will be additional work. In your bid please indicate how would you implement this solution and include any prior multitenant project you worked on. I would like to provide a bit more details to see if you would be comfortable with the requirements. The MVP was mainly built based on the below guide [login to view URL]
What I'm looking to incorporate is described in this article [login to view URL] It seems like the best way to implement user level filtering is via Global Query Filters
Currently there is a Company model. Also the default identity models. I would like to have a new model created something like CompanyUserAccess. This model (table) would have CompanyID and the ID from the AspNetUsers table. What I would like to have is a global filter which would take the list of CmpanyIDs assigned to the logged in user. This way a user would only see the companies that is assigned.
The Project is in AngularTS and .NETCORE very simple just aspnetusers login , registration and company listing functionality is there currently.
Have a nice day!