c# - Security script based on Global Group? -

-

i'm not sure if possible, i'd limit users specific areas of intranet site based on membership in specific global groups created in sql server.

for example, i've got following menu in asp:

    <div class="clear hideskiplink" id="mainmenu">          <asp:menu id="navigationmenu" runat="server" cssclass="menu"              includestyleblock="false" orientation="horizontal"              backcolor="#cc3300">              <items>                  <asp:menuitem  navigateurl="~/default.aspx" text="home" selectable="true" />                     <asp:menuitem navigateurl="~/forms/frmcensuslist.aspx" text="census editing"/>                     <asp:menuitem navigateurl="~/forms/frmroster.aspx" text="roster editing"/>                     <asp:menuitem navigateurl="~/forms/frmreportmenu.aspx" text="reporting"/>                     <asp:menuitem navigateurl="~/about.aspx" text="about"/>                    <%-- <asp:menuitem navigateurl="~/webform1.aspx" text="test"/>--%>             </items>          </asp:menu>     </div>

and following in code behind limits "security level" can see "about" page:

protected void page_load(object sender, eventargs e) {     string path = request.apprelativecurrentexecutionfilepath;     foreach (menuitem item in navigationmenu.items)     {         item.selected = item.navigateurl.equals(path, stringcomparison.invariantcultureignorecase);     }      // if user isn't admin, hide menu option     string activeuser = system.web.httpcontext.current.user.identity.name;     string securitylevel = activeuser.seclevel();     if (securitylevel != "admin")     {         menuitem mnuitem = navigationmenu.finditem("about"); // find particular item         if (mnuitem != null)         {             navigationmenu.items.remove(mnuitem);         }     }  }

seclevel() function created that's based on table of user's ids, maintaining table pain, plus future projects going pain compile original table, , easier if can based on existing global groups.

anyone got suggestions?

your global groups active directory security groups. can not difficulty using builtin asp.net role provider, web.config entries control groups/roles can see menu items, , binding menu control use web.sitemap file. of combined securitytrimmingenabled. ensure menu options shown to users in groups have defined. if these not ad groups, can still have create custom role provider check against sql server groups or use table have created.

your web.config location entries end looking based on example provided, entries each of pages want allow user see:

  <configuration>    <location path="~/about.aspx">       <system.web>          <authorization>             <allow roles="admin"/>             <deny users="*"/>          </authorization>       </system.web>    </location>    <location path="~/forms/frmcensuslist.aspx">       <system.web>          <authorization>             <allow roles="census,admin,etc"/>             <deny users="*"/>          </authorization>       </system.web>    </location>   <location path="~/forms/frmroster.aspx">       <system.web>          <authorization>             <allow roles="admin,roster"/>             <deny users="*"/>          </authorization>       </system.web>    </location>    ...  </configuration>    <system.web>   <sitemap defaultprovider="xmlsitemapprovider" enabled="true">     <providers>       <add name="xmlsitemapprovider"         description="default sitemap provider."         type="system.web.xmlsitemapprovider "         sitemapfile="web.sitemap"         securitytrimmingenabled="true" />     </providers>   </sitemap> </system.web>

sample web.sitemap:

<?xml version="1.0" encoding="utf-8" ?> <sitemap xmlns="http://schemas.microsoft.com/aspnet/sitemap-file-1.0" >   <sitemapnode url="~/forms/frmcensuslist.aspx" title="census" description="" roles="admin,census">   <sitemapnode url="~/forms/frmroster.aspx" title="roster editing" description="" roles="admin,roster">   <sitemapnode url="~/forms/frmreportmenu.aspx" title="reporting" description="" roles="admin,reports"> ...   <sitemapnode url="~/about.aspx" title="about" description="" roles="admin"> </sitemap>

see this article more information


Comments

Post a Comment

Popular posts from this blog

plot - Remove Objects from Legend When You Have Also Used Fit, Matlab -

-
Image
i've plotted data points , fitted exponential curve between them using 'fit' in matlab. problem fit-function got fitted line wanted plot, markers on top of regular markers. solved problem plotting wanted markers on top of unwanted couldn't seen. problem. when want show legends dots in there. how can remove markers legend without removing fitted line since both of them hidden inside fit-function? can stop 'fit' plotting unwanted markers? so, want remove blue dot called 'hoff' in picture below. you can leave out legend-entries manually leaving out handles of lines, dont want in legend. try this: %if plot something, want showing in legend, save handle: h_line = plot(x,y) %you dont want show line? dont anything, plot it: plot(mymarker) %then set legend-> can add text legend-entries %a cell-array containing strings want show up: legend([h_line another_line],{'text1' 'text2'}) with example (see comments) came solution:
Read more

java - Why does my date parsing return a weird date? -

-
here code using: string string = "08/07/2013".replace('/', '-'); date date = new simpledateformat("yyyy-mm-dd").parse(string); why date return: "wen jan 3 00:00:00 est 14"? not @ date format told use. edit: need format because database using requires format. the format use parse date string, not match it. using yyyy 08 . use following format: new simpledateformat("dd-mm-yyyy") and why @ replacing / - ? can build pattern original string only: string string = "08/07/2013" date date = new simpledateformat("dd/mm/yyyy").parse(string); and if want date string in yyyy-mm-dd format, can format date using dateformat#format(date) method: string formatteddate = new simpledateformat("yyyy-mm-dd").format(date); see also: change date format in java string simpledateformat java doc
Read more

Need help in packaging app using TideSDK on Windows -

-
i developed application using tidesdk on windows , when click launchapp works fine. moved package , installed imagemagick , wix 3.0 required packaging on windows. clicked on package runtime , cannot guess packaged app is? found file 'installer' in workspace when click on it says installer not find application path . think application not being packaged properly. here log see in tidesdk: preparing package desktop app runtime. 1 moment... staging trial -> copying contents d:\lab\tidesdk\trial d:\lab\tidesdk\trial\packages\win32\bundle\trial -> copying installer c:\programdata\tidesdk\sdk\win32\1.3.1-beta\installer d:\lab\tidesdk\trial\packages\win32\bundle\trial -> copying runtime d:\lab\tidesdk\trial\packages\win32\bundle\trial -> date: d:\lab\tidesdk\trial\packages\win32\bundle\trial\modules\app\1.3.1-beta -> date: d:\lab\tidesdk\trial\packages\win32\bundle\trial\modules\codec\1.3.1-beta -> date: d:\lab\tidesdk\trial\packages\win32\bundle\trial\mod
Read more