| Subject | ROLES / LOGIN , control access to GUI user rights. |
|---|---|
| Author | wayne |
| Post date | 2002-11-16T10:56:05Z |
I have to control access to various parts of my program.
How does one do this ? ...
Could one use ROLES / USER / PASSWORD logins to
restrict access to the GUI ?
What will happen if a USER logs in with a ROLE that is not assigened to
the user? My guess is that an Excpetion will be thrown if data is
accessed that is not assigned to that role.
What will hapen if a USER logs in via a ROLE that is not assigned to
that USER ? How does one prevent this ?
Most of the Buttons in my applciation is controled via an ActionList so
base apon the ROLE I could disable/enable the appropriate Actions.
Can this be done, How does one determine the ROLE that is assinged to
the USER ?
How does one use ROLES to control access, or is it not
intended for such use ?
Thanking you
Wayne Forrest
Here is my plan for the interem.
User Interbase/Firebid to authenticate the USER to give access the
server containing multiple DATABASES.
Use ROLES as a SAVEGUARD Data only. Limit the USER to use
data ONLY pertaining to that
APPLICATION ("is this where the penny drops?"),
Resrtict Access to only one DATABASE.
USE my Own mechanism to restict access to certain parts of
the Data for the particular application.
How does one do this ? ...
Could one use ROLES / USER / PASSWORD logins to
restrict access to the GUI ?
What will happen if a USER logs in with a ROLE that is not assigened to
the user? My guess is that an Excpetion will be thrown if data is
accessed that is not assigned to that role.
What will hapen if a USER logs in via a ROLE that is not assigned to
that USER ? How does one prevent this ?
Most of the Buttons in my applciation is controled via an ActionList so
base apon the ROLE I could disable/enable the appropriate Actions.
Can this be done, How does one determine the ROLE that is assinged to
the USER ?
How does one use ROLES to control access, or is it not
intended for such use ?
Thanking you
Wayne Forrest
Here is my plan for the interem.
User Interbase/Firebid to authenticate the USER to give access the
server containing multiple DATABASES.
Use ROLES as a SAVEGUARD Data only. Limit the USER to use
data ONLY pertaining to that
APPLICATION ("is this where the penny drops?"),
Resrtict Access to only one DATABASE.
USE my Own mechanism to restict access to certain parts of
the Data for the particular application.