Forum Home

Forum Home > DevForce > DevForce Classic

New Posts

RSS Feed: [DEFERRED] Authentication Information

FAQ

FAQ

Register

Login

[DEFERRED] Authentication Information

Post Reply

Author	Message / View Unread Post Share Topic Printable Version Delicious Digg Facebook Furl Google Boomarks Google Buzz MySpace Newsvine reddit StumbleUpon Translate Twitter Windows Live Yahoo Bookmarks Topic Search Topic Options Post Reply Create New Topic
Linguinut Members Profile Send Private Message Find Members Posts Add to Buddy List Senior Member Joined: 14-Jun-2007 Location: United States Posts: 394	Post Options Post Reply Quote Linguinut Report Post Quote Reply Topic: [DEFERRED] Authentication Information Posted: 05-Oct-2007 at 4:33pm
	How do I access user authentication information from within a module? Is it possible to access active directory data? Deferred to: http://www.ideablade.com/forum/forum_posts.asp?TID=483 Edited by Linguinut - 13-Oct-2007 at 7:36am

Bill Jensen Members Profile Send Private Message Find Members Posts Add to Buddy List IdeaBlade Joined: 31-Jul-2007 Location: United States Posts: 229	Post Options Post Reply Quote Bill Jensen Report Post Quote Reply Posted: 08-Oct-2007 at 2:47pm
	Authentication information is generally boolean: either the user is who he says he is (based on his credentials) or not. Once a user is authenticated, authorization determines what that user is allowed to see or do. Often this is accomplished by assigning the user string-valued roles stored in the Principal object. This is created on the server and passed back to the client where it may be queried via the IsInRole() method of the Principal object. If more authorization information is needed, you could create a custom Principal object. I really don't know much about Active Directory. Bill J.

Linguinut Members Profile Send Private Message Find Members Posts Add to Buddy List Senior Member Joined: 14-Jun-2007 Location: United States Posts: 394	Post Options Post Reply Quote Linguinut Report Post Quote Reply Posted: 08-Oct-2007 at 4:37pm
	Sorry...I meant user authorization. If a user is not authorized to add a new entity (they can edit), how do I make that happen? If a user is not authorized to view a portion of the data (only division A data, for example), how do I limit various view, lists, modules, etc.? I figure, if there is a general way to do this (service, injection, etc.), I can extend it to work with my active directory. Since this is security in a CAB application, I thought it best to leave this issue here. Thanks! Bill

Linguinut Members Profile Send Private Message Find Members Posts Add to Buddy List Senior Member Joined: 14-Jun-2007 Location: United States Posts: 394	Post Options Post Reply Quote Linguinut Report Post Quote Reply Posted: 13-Oct-2007 at 7:35am
	This is related to the newer thread--Security Application Block. I'll pick these questions up in that thread, if necessary.

Post Reply

Forum Jump

Forum Permissions View Drop Down

View Drop Down

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot delete your posts in this forum
You cannot edit your posts in this forum
You cannot create polls in this forum
You cannot vote in polls in this forum