Hope someone can help.
I am trying to build an application that will allow a
user to access/deny an application, the application's
individual pages, and the forms within the individual
pages.
For example once a user log's in the application will
check whether the user can access the application's main
page. If so it lets him/her see the page.
Now once the user clicks on any link on the main page the
application will check whether the user has read only, or
read write access to the page he wanted to see. (Read
write meaning they can write into the form fields in that
page, and read only meaning they can only view the form)
The next level of security I want to implement is whether
the user has read only, or read write permission on The
individual fields (textboxes) in that form. So a user
might have access to the application main page, the
individual page, the form but not to two textboxes on the
form. For example in one form I may contain the person's
name and his salary. I want to allow him to update his
name but not his salary.
If anyone can give advice on how to implement this it
would be much appreciated.
Thank you,
Abdulrauf
1  1411  http://www.microsoft.com/italy/net/b...ect/SecNet.pdf
There is a good example of how to set up an encrypted cookie that sets
application roles at log in (Forms Authentication). I have implemented this
solution myself, a user logs into my site, based on their login tag it goes
to a specific sql server database (connect string in config file), and based
on the read write permissions it finds there it assigns roles.
"abdulrauf" <rs*****@amideast.org> wrote in message
news:0b****************************@phx.gbl... Hope someone can help.
I am trying to build an application that will allow a
user to access/deny an application, the application's
individual pages, and the forms within the individual
pages.
For example once a user log's in the application will
check whether the user can access the application's main
page. If so it lets him/her see the page.
Now once the user clicks on any link on the main page the
application will check whether the user has read only, or
read write access to the page he wanted to see. (Read
write meaning they can write into the form fields in that
page, and read only meaning they can only view the form)
The next level of security I want to implement is whether
the user has read only, or read write permission on The
individual fields (textboxes) in that form. So a user
might have access to the application main page, the
individual page, the form but not to two textboxes on the
form. For example in one form I may contain the person's
name and his salary. I want to allow him to update his
name but not his salary.
If anyone can give advice on how to implement this it
would be much appreciated.
Thank you,
Abdulrauf This thread has been closed and replies have been disabled. Please start a new discussion. Similar topics
by: win2kcowboy |
last post by:
Using VS2003, ASP.NET 1.1
Is it possible to secure files normally placed as attachments (such as word
docs etc.) and often placed in attachment directories within your web
application, using...
|
by: Giloosh |
last post by:
Hello, i have a microsoft access application and right now, anyone
knowing how to use microsoft-access can easily go behind the
applicatio, design the forms, delete edit/tables etc... There is...
|
by: Jurjen de Groot |
last post by:
I have build an ASP.NET application and would like to protect various
folders containing aspnet pages for various usertypes.
/Admin
/Manager
/User
I've created a login on the default.aspx in...
|
by: Eric |
last post by:
I am trying to build an app where the stuff in the root directory is open to
all, but anything under the Restricted directory requires you to login and I
want to use Forms to do it. I'm having...
|
by: Johan Pingree |
last post by:
HOW in the world is this accomplished! I have an internet site I am
prototyping and I need to be able to prevent "casual" browsing of XML
documents. Using the web.config forms based authentication...
|
by: blue.flip.flops |
last post by:
In a Database I'm attempting to create, I need certain forms to be
visible to one user group; and other forms to be invisble to them. One
of the forms that needs to be visible has a link to a...
|
by: Rotsey |
last post by:
Hi,
I have 3 groups I want to secure, Admins, users, Agencies.
I have seperate folder for each and want to use role based security.
I have pages already in Users that I want to access by...
|
by: Les Desser |
last post by:
In article
<fcebdacd-2bd8-4d07-93a8-8b69d3452f3e@s50g2000hsb.googlegroups.com>, The
Frog <Mr.Frog.to.you@googlemail.comMon, 14 Apr 2008 00:45:10 writes
Not sure if I quite follow that.
1....
|
by: AeonOfTime |
last post by:
Let's assume a web application (in this case a browser-based game)
with a custom HTTP server built on PHP, and a client also built on
PHP. The client uses the server to access and change data. Even...
|
by: Charles Arthur |
last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
|
by: BarryA |
last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
|
by: nemocccc |
last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
|
by: Hystou |
last post by:
There are some requirements for setting up RAID:
1. The motherboard and BIOS support RAID configuration.
2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
|
by: Hystou |
last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
|
by: Oralloy |
last post by:
Hello folks,
I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>".
The problem is that using the GNU compilers,...
|
by: jinu1996 |
last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
|
by: tracyyun |
last post by:
Dear forum friends,
With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
|
by: isladogs |
last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM).
In this session, we are pleased to welcome a new...
| |
