Ask a Question related to ASP.NET General, Design and Development.
-
PK #1
ASP.NET security control
Hi All,
I will be writing an asp.net application which require users to log on
before they can view the particular information.
so here the security control is needed and a must for different user who
have various access level.
I am wondering what is the best way or a more reliable way to control the
user ?
my backend using SQL server.
thank you.
PK Guest
-
ASP.net control Security
Hi All, I have created a custome control for ASP.net. That control has lot of javascript files & images. Is there any way to protect those from... -
Security question for a Winforms user control on a web page
I have a winforms user control that I need to use in our web page. The control connects to a remoting object. When I try and make the initial... -
Get UserGroup of Active Directory to control the security
Hi, I have an ASP.Net Intranet App with C#. I don't need to ask users about by User and PWD since they are already logged in. This is acheived... -
Can't configure security for client side control
I've created a Windows.Forms control and placed it on an aspx page with the <object> tag and verified that it works nicely. But, when I add... -
WindowsForm control gives security warnings under IE
I have written a .NET WindowsForm control which is deployed on the server and runs on the client machines in the IE browser. All the control is... -
William F. Robertson, Jr. #2 Re: ASP.NET security control
I have a three objects that assist my team in doing exactly that.
I have a SecurityProvider, Page, SecurityHandler.
The SecurityHandler is an abstract class that holds IsSecurityValid,
CanViewPage, RedirectOnFailure, BuildSecurity. The class derived for each
application must implement these methods.
When my Page object is loading, it looks through the SecurityProvider
(mostly static methods) to see if a SecurityHandler was initialized for the
project (on application start), if it was, it will call IsSecurityValid (if
failure, call BuildSecurity, if failure call RedirectOnFailure), if the
security information is valid, it will call CanViewPage, passing the current
page name for the current request. ( if failure, it calls redirect on
failure ).
Now the SecurityHandler stores a table of pagename, security, and special
permissions that the page object exposes through its Security property (if
the handler was initialized otherwise an exception is thrown). The page
developers can also request special permission for pages ( such as can this
user view change infromation on the page.) The Security property also
stores (as defined in the BuildSecurity method) data on the specific
session, such as name, group, role, etc.. that can be easily accessed at the
page level.
The security for all our apps are driven by Sql and loaded once during page
information.
HTH,
bill
"PK" <kerks@po.jaring.my> wrote in message
news:#MlY6O0VDHA.1480@tk2msftngp13.phx.gbl...> Hi All,
>
> I will be writing an asp.net application which require users to log on
> before they can view the particular information.
> so here the security control is needed and a must for different user who
> have various access level.
>
> I am wondering what is the best way or a more reliable way to control the
> user ?
> my backend using SQL server.
>
> thank you.
>
>
William F. Robertson, Jr. Guest
-
PK #3 Re: ASP.NET security control
Could you send some sample application for me ?
"William F. Robertson, Jr." <wfrobertson@kpmg.com> wrote in message
news:u$uQLp4VDHA.2340@TK2MSFTNGP10.phx.gbl...the> I have a three objects that assist my team in doing exactly that.
>
> I have a SecurityProvider, Page, SecurityHandler.
>
> The SecurityHandler is an abstract class that holds IsSecurityValid,
> CanViewPage, RedirectOnFailure, BuildSecurity. The class derived for each
> application must implement these methods.
>
> When my Page object is loading, it looks through the SecurityProvider
> (mostly static methods) to see if a SecurityHandler was initialized for(if> project (on application start), if it was, it will call IsSecurityValidcurrent> failure, call BuildSecurity, if failure call RedirectOnFailure), if the
> security information is valid, it will call CanViewPage, passing thethis> page name for the current request. ( if failure, it calls redirect on
> failure ).
>
> Now the SecurityHandler stores a table of pagename, security, and special
> permissions that the page object exposes through its Security property (if
> the handler was initialized otherwise an exception is thrown). The page
> developers can also request special permission for pages ( such as canthe> user view change infromation on the page.) The Security property also
> stores (as defined in the BuildSecurity method) data on the specific
> session, such as name, group, role, etc.. that can be easily accessed atpage> page level.
>
> The security for all our apps are driven by Sql and loaded once duringthe> information.
>
> HTH,
>
> bill
>
> "PK" <kerks@po.jaring.my> wrote in message
> news:#MlY6O0VDHA.1480@tk2msftngp13.phx.gbl...> > Hi All,
> >
> > I will be writing an asp.net application which require users to log on
> > before they can view the particular information.
> > so here the security control is needed and a must for different user who
> > have various access level.
> >
> > I am wondering what is the best way or a more reliable way to control>> > user ?
> > my backend using SQL server.
> >
> > thank you.
> >
> >
>
PK Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
