Re: Role of current windows login user
- From: "Willy Denoyette [MVP]" <willy.denoyette@xxxxxxxxxx>
- Date: Mon, 16 Jan 2006 17:10:32 +0100
Well, as Windows based 'roles' are mapped to "Windows security group"
membership, and because a user can be a member of more than one security
group, it should be role(s).
Take a user "Bob", which is a member of both 'SalesDpt' and 'AccountMgrs',
Bob is automatically assigned both roles. In your code you can execute
different paths depending on whether he's an account manager or just a
generic member of a sales department.
Note that enumerating user groups (roles) by reflecting private methods like
shown by Peter, is NOT the way you should go, this code is non-portable and
fails on v2. The only right way to enumerate user groups is by using the
System.DirectoryServices classes.
Willy.
"Mark White" <markw2927@xxxxxxxxx> wrote in message
news:%23brStMrGGHA.1180@xxxxxxxxxxxxxxxxxxxxxxx
| One other question.
|
| This was on a "skills test". The time has passed, and I'm not interested
in
| seeing any code. Just trying to make sense of this.
|
| One of the requirements was to "display the role of the current logged in
| user".
|
| This was the test from the tech. manager. Unless it's a typo, shouldn't
it
| be role(s)?
|
| Thanks.
| "Willy Denoyette [MVP]" <willy.denoyette@xxxxxxxxxx> wrote in message
| news:%23830pafGGHA.3976@xxxxxxxxxxxxxxxxxxxxxxx
| >
| > "Mark White" <markw2927@xxxxxxxxx> wrote in message
| > news:%23sQsM2XGGHA.1452@xxxxxxxxxxxxxxxxxxxxxxx
| > | Hey everyone
| > |
| > | I'm having a great deal of problems finding this information through
| > | and yahoo, so I turn to you on this.
| > |
| > | I have a Windows app running on XP. I am able to caputre the user's
| Name
| > | property in the WindowsPrincipal's IIdentity interface.
| > |
| > | Where can I find the role that the user is assigned for the current
| login?
| > | I only want the one role which is assigned for the current user, not
all
| > of
| > | the groups in which the user belongs (that is working fine).
| > |
| > | Do I have to actually test out permissions on files/objects to find
the
| > | current role/group? Seems to be a lot of work going that route for
| > | something which should be accessible in the same interface as Name.
Why
| > | isn't it?
| > |
| > | I'm on 1.1 btw. Has this changed in 2.0?
| > |
| > | Thank you in advance for any help you can give me.
| > |
| > | Mark White
| > |
| > |
| >
| > Roles are not meant to check/control resource access permissions, they
are
| > meant for program access/flow control. These are totally different
things.
| >
| > if(myPrincipal.IsInRole("Sales"))
| > {
| > // Do whatever "Sales" is allowed to do, initialize the UI etc...
| > }
| > else
| > if((myPrincipal.IsInRole("AccountManagers"))
| > // do whatever "AccountMAnagers" are allowed to do.
| >
| > Resources like file and directory object permissions are checked when a
| user
| > opens the resource, this is the task of the OS and (in general) not the
| task
| > of an application program. Note that V2.0 includes managed classes that
| > wraps the object security access API's in Win32 by means of
| > System.Security.AccessControl classes, v1.1 user can achieve the same
| using
| > System.DirectoryServices and some ADSI stuff or by using the
| > System.Management and WMI classes.
| >
| > Willy.
| >
| >
|
|
.
- Follow-Ups:
- Re: Role of current windows login user
- From: Mark White
- Re: Role of current windows login user
- References:
- Role of current windows login user
- From: Mark White
- Re: Role of current windows login user
- From: Willy Denoyette [MVP]
- Re: Role of current windows login user
- From: Mark White
- Role of current windows login user
- Prev by Date: Re: HI
- Next by Date: Extending objects that get returned as generics
- Previous by thread: Re: Role of current windows login user
- Next by thread: Re: Role of current windows login user
- Index(es):
Relevant Pages
|
