Re: ASP.NET 2.0 security..

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

---

• From: "Alec MacLean" <alec@xxxxxxxxxxxxxxxxxxxxxxxxx>
• Date: Sat, 4 Feb 2006 09:09:11 -0000

---

Generally, I would use a database to determine what areas or page sections a
given user is able to see. This would require the user registering at your
site of course, but then they would need to do something of this sort in
order to get a login, right?

I can thoroughly recommend using the Microsoft Patterns & Practices
Application Blocks. In particular, I use the DAAB for data driven apps
(both Win form and Web form). Note that this is geared for Framework 1.1,
but is 2.0 compatible - it just doesn't know about some of the new data
features. (The 2.0 version is being written at the moment and is
"imminent".)

I can also recommend the Wrox book list for very useful detailed background
info and examples. I have "ASP.NET Security" (though note that it was
written for framework 1 prior to sp-1). - I've just taken a look at the
Wrox site and of course they've got a new title out: "Pro ASP.NET 2.0
Security, Membership and Role Management". Perhaps this would be of value
to you?

How are you going to determine which rights they are entitled to? Will an
administrator have to examine each account and manually assign rights, or
will you be able to set a default set?

If this is for an intranet scenario, perhaps you have access to a staff
directory DB? You could add your access rights for your app to a sub-table
of this system perhaps, or have a query that crosses access that other DBO.

Hope that helps.

Al



"Paul Aspinall" <paul@xxxxxxxxxx> wrote in message
news:gIZEf.259513$D47.80783@xxxxxxxxxxxxxxxxxxxxxxxxxxxx

Can anyone point me to an article which shows how to control access to
certain web pages, for different forms authenticated users.

I would ideally like to decide if users can 'view' 'edit' 'create' or
'delete' on each page, and therefore some sort of status flag would be
needed, to indicate the level of security granted.

Any pointers to sample code appreciated.

Thanks

.

---

• References:
  • ASP.NET 2.0 security..
    • From: Paul Aspinall

• Prev by Date: Re: less code????????????? are you out of your mind?
• Next by Date: Re: How to select the text in a TextBox
• Previous by thread: ASP.NET 2.0 security..
• Next by thread: Re: ASP.NET 2.0 security..
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Secure shared web hosting using MAC Framework ... run the web server and web users shell in a jail, ... Those rights should have priority on any traditional unix file ... This directive allows you to disable certain functions for security reasons. ... Web users and executed web scripts shouldn't be able to read ... (FreeBSD-Security) Re: Women in Iraq must fight to keep the rights/freedoms they had under Saddam. ... Iraqis overthrew the British-installed monarchy, ... enjoyed many of the rights that Western women do. ... economic stability, and security. ... safe here," a displaced woman in northern Iraq told RI. ... (soc.retirement) Re: Women in Iraq must fight to keep the rights/freedoms they had under Saddam. ... Iraqis overthrew the British-installed monarchy, ... enjoyed many of the rights that Western women do. ... economic stability, and security. ... safe here," a displaced woman in northern Iraq told RI. ... (soc.retirement) RE: Rights ... the benefit is improved security. ... in restricting rights in favor of increased security. ... EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE ... The NSA has designated Norwich University a center of Academic ... (Security-Basics)

---

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint

www.tech-archive.net  > Archive  > DotNet  > microsoft.public.dotnet.framework.aspnet  > 2006-02