Saturday, March 24, 2012

Windows Authorization Question

I'm a newbie with ASP.NET 1.1. I'm building an application which will allow
only 5 or 6 people access (authentication) and they're all on the domain;
and only 2 or 3 will have write permission to the SQL Server 2000 on the
pages (authorization). What's the best way to do this (least amount of
maintenance if users get added/removed)? Thanks.use windows authentication. U can define your users and roles in web.config
file in your case it should be enough...
Thanks,
Yunus Emre ALPZEN
BSc, MCAD.NET
"dw" <cougarmana_NOSPAM@.uncw.edu> wrote in message
news:%23SMdGakWFHA.2768@.tk2msftngp13.phx.gbl...
> I'm a newbie with ASP.NET 1.1. I'm building an application which will
> allow only 5 or 6 people access (authentication) and they're all on the
> domain; and only 2 or 3 will have write permission to the SQL Server 2000
> on the pages (authorization). What's the best way to do this (least amount
> of maintenance if users get added/removed)? Thanks.
>
Thanks, Yunus. How do I allow some users to full edit of data, while others
only view info on pages?
"Yunus Emre ALPZEN [MCAD.NET]" <yemre@.msakademik.net> wrote in message
news:OWH1NvkWFHA.1148@.tk2msftngp13.phx.gbl...
> use windows authentication. U can define your users and roles in
> web.config file in your case it should be enough...
> --
> Thanks,
> Yunus Emre ALPZEN
> BSc, MCAD.NET
> "dw" <cougarmana_NOSPAM@.uncw.edu> wrote in message
> news:%23SMdGakWFHA.2768@.tk2msftngp13.phx.gbl...
>
U should define users with roles. And use declarative or imperative security
checks.
For instance
System.Threading.Thread.CurrentPrincipal.IsInRole("Admin") returns boolean
indicating whether the current user belongs to admin group. Admin is not a
specific word u can easily define it. My advice u to google Role Based
Security. There are too much code examples in the net.
Thanks,
Yunus Emre ALPZEN
BSc, MCAD.NET
"dw" <cougarmana_NOSPAM@.uncw.edu> wrote in message
news:O3D3O2kWFHA.628@.tk2msftngp13.phx.gbl...
> Thanks, Yunus. How do I allow some users to full edit of data, while
> others only view info on pages?
> "Yunus Emre ALPZEN [MCAD.NET]" <yemre@.msakademik.net> wrote in message
> news:OWH1NvkWFHA.1148@.tk2msftngp13.phx.gbl...
>
Posted by secreteasdv at 8:45 AM
Labels: , , , , , , , , ,

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)