|
Field-level Security |
Post Reply 
|
| Author |
 Share Topic Printable Version Delicious Digg Facebook Furl Google Boomarks Google Buzz MySpace Newsvine reddit StumbleUpon Translate Twitter Windows Live Yahoo Bookmarks Topic Search  Topic Options
|
alipoland 
Newbie 
Joined: 06-Mar-2009 Location: Poland Posts: 19 |
 Post Options
 Quote Reply
 Topic: Field-level SecurityPosted: 06-Mar-2009 at 11:44pm |
|
Salam all, Can someone please guide me on how to enforce role-based security at field-level? I need some fields within a table to be hidden|readonly|readwrite based on the current role logged in.
Many thanks in advance and peace to all.
Ali
God > infinity
|
|
 |
|
|
smi-mark
DevForce MVP 
Joined: 24-Feb-2009 Location: Dallas, Texas Posts: 343 |
Post Options
Quote Reply
Posted: 09-Mar-2009 at 9:58am |
|
Hi Ali,
In your DomainModel if you create a class that implements IEntityServerSaving and IEntityServerFetching you can change what gets returned/saved. The current Principal is in the arguments so you can do your IsInRole functions to determine what action to take. You should take a look at the property interceptors too, they offer a lot of functionality that you may want versus using the EntityServer interfaces. Mark Edited by smi-mark - 09-Mar-2009 at 10:11am |
|
|
|
|
Post Reply
|
| Forum Jump | Forum Permissions You cannot post new topics in this forum You cannot reply to topics in this forum You cannot delete your posts in this forum You cannot edit your posts in this forum You cannot create polls in this forum You cannot vote in polls in this forum |