Easiest way to secure entire site, and allow access to certain pages depending database settings
I was wondering what the easiest and or best way is to secure my site. This is what I'm looking at doing.
You need to be logged in to access the entire site (besides login page).
On the navigation I have a couple links that are for admins to access and change user information including what they have access too in the site.
On the main page, I have links set up as "channels" that a user may or may not have access to any of those links.
Within each of the channels, there are a couple more links that take you to a lesson. (Something 2014 or Something 2015) I want to restrict this as well depending on if the user also has rights to one of these or not.
Of course Admins will have access to everything.
In the database I'v set up in the Users table IsAdmin, Specialization, Workflow, etc for the different "channel" links as well as if the user has access to a lesson or not.
I'm trying to figure out what would be the best way configure all this to get the access how I want it. I have a general idea on what to do, but not sure if it's the best or correct way of doing it.