469,292 Members | 1,312 Online
Bytes | Developer Community
New Post

Home Posts Topics Members FAQ

Post your question to a community of 469,292 developers. It's quick & easy.

Windows Authetication vs seperate process

I was wondering of someone could steer me in the right direction.

We have a package that we would like to "secure" so that only specific
individuals can access specific portions of the application. Our
wxPython application will revolve around updating a central database
with information submitted from the app. We will eventually have a web
front end fo rsome aspects of the app.

With several packages I have seen options to "Use Windows
Authentication", which seems to mean that "If the user has
authenticated and signed onto Windows, then our application will use
their windows userid and we will just focus on the the tasks within our
application the user is authorized to perform"

Does anyone have any experience using this type of authentication
scheme ?

Any related tips or suggestions ?

I have found a few wikipedia entries, but they seem to be more related
to webpages, etc.

Thanks.

Dec 18 '06 #1
3 905
At Monday 18/12/2006 13:24, im**********@gmail.com wrote:
>With several packages I have seen options to "Use Windows
Authentication", which seems to mean that "If the user has
authenticated and signed onto Windows, then our application will use
their windows userid and we will just focus on the the tasks within our
application the user is authorized to perform"
Search for SSPI. But it may be a bit tricky to get running.
--
Gabriel Genellina
Softlab SRL

__________________________________________________
Correo Yahoo!
Espacio para todos tus mensajes, antivirus y antispam ˇgratis!
ˇAbrí tu cuenta ya! - http://correo.yahoo.com.ar
Dec 18 '06 #2
On Monday 18 December 2006 10:24, im**********@gmail.com wrote:
I was wondering of someone could steer me in the right direction.

We have a package that we would like to "secure" so that only specific
individuals can access specific portions of the application. Our
wxPython application will revolve around updating a central database
with information submitted from the app. We will eventually have a web
front end fo rsome aspects of the app.

With several packages I have seen options to "Use Windows
Authentication", which seems to mean that "If the user has
authenticated and signed onto Windows, then our application will use
their windows userid and we will just focus on the the tasks within our
application the user is authorized to perform"

Does anyone have any experience using this type of authentication
scheme ?

Any related tips or suggestions ?

I have found a few wikipedia entries, but they seem to be more related
to webpages, etc.

Thanks.
Using windows authentication IMHO should only be used if there is an Active
Directory/LDAP server set up against which the users are authenticated. I
googled for 'active directory python' and came across
http://tgolden.sc.sabren.com/python/ad_cookbook.html It seems to be very
simple to use.

If I were to implement an authentication system like you want. I would:
1. Check to see if the local machine was part of a domain. If not then inform
the user that they need to be.
2. Check to see if the user who ran the application is part of a specific
group in AD.

I would assign each group a certain 'level' of privilege and accordingly let
the user do what they should be able to do.

I hope this is a good starting point.

- Jonathan Curran
Dec 18 '06 #3

im**********@gmail.com wrote:
>I was wondering of someone could steer me in the right direction.

We have a package that we would like to "secure" so that only specific
individuals can access specific portions of the application. Our
wxPython application will revolve around updating a central database
with information submitted from the app. We will eventually have a web
front end fo rsome aspects of the app.

With several packages I have seen options to "Use Windows
Authentication", which seems to mean that "If the user has
authenticated and signed onto Windows, then our application will use
their windows userid and we will just focus on the the tasks within our
application the user is authorized to perform"

Does anyone have any experience using this type of authentication
scheme ?

Any related tips or suggestions ?

I have found a few wikipedia entries, but they seem to be more related
to webpages, etc.

Thanks.
The pywin32 package includes the functions needed to do this type of
authentication. See \win32\Demos\security\sspi for some examples that
work out of the box with NTLM.

Roger


----== Posted via Newsfeeds.Com - Unlimited-Unrestricted-Secure Usenet News==----
http://www.newsfeeds.com The #1 Newsgroup Service in the World! 120,000+ Newsgroups
----= East and West-Coast Server Farms - Total Privacy via Encryption =----
Dec 20 '06 #4

This discussion thread is closed

Replies have been disabled for this discussion.

By using this site, you agree to our Privacy Policy and Terms of Use.