I am working on a doent management system for a client. I am planning to
set up the system so that doents are protected, sort of.. A user has an
access level and based on that access level, a list of available doents
will display as an HTML page and the user can click a hyperlink to download
or view the selected doent.
I am planning to handle this all through a SQL database and ASP..
What I would REALLY like to do, though, is protect a set of directories so
that a user could not just enter a URL and download a doent without being
prompted for a username and password if he/she hasn't already logged in.
I have done something like this using AuthnetiX from Flicks Software, but
this current client is trying to create a solution "on the cheap", and so
I'd like to see if I can build the solution using the secuirty mechanisms
built into the O/S.
What I'm thinking is that I'll set up the directories and assign a group
access to each directory.. My question then is, can I add users to the
"Local Users and Groups" for Windows 2000 via ASP?