DevForce Community Forum : Object security

DevForce Community Forum : Object security http://www.ideablade.com/forum/ This is an XML content feed of; DevForce Community Forum : DevForce Classic : Object security Sat, 25 May 2013 21:50:36 -700 Thu, 23 Oct 2008 00:19:16 -700 http://blogs.law.harvard.edu/tech/rss Web Wiz Forums 9.69 360 www.ideablade.com/forum/RSS_post_feed.asp?TID=332 DevForce Community Forum http://www.ideablade.com/forum/forum_images/IdeaBlade_logo_tm.png http://www.ideablade.com/forum/ Object security : Thank you for sharing useful information.We... http://www.ideablade.com/forum/forum_posts.asp?TID=332&PID=3522#3522 Author: securityservice
Subject: 332
Posted: 23-Oct-2008 at 12:19am

Thank you for sharing useful information.We want you to come up with more information's.

Hacker4lease-IT Security Service]]> Thu, 23 Oct 2008 00:19:16 -700 http://www.ideablade.com/forum/forum_posts.asp?TID=332&PID=3522#3522 Object security : Use "IsInRole" to test... http://www.ideablade.com/forum/forum_posts.asp?TID=332&PID=783#783 Author: davidklitzke
Subject: 332
Posted: 27-Jul-2007 at 8:38am

Use "IsInRole" to test whether the user is authorized to perform a particular action:

http://www.ideablade.com/forum/forum_posts.asp?TID=69

Use SaveSecurityCheck to prevent undesired saving, updating, or deleting of data. For an example, see the advanced tutorial:

]]> Fri, 27 Jul 2007 08:38:46 -700 http://www.ideablade.com/forum/forum_posts.asp?TID=332&PID=783#783 Object security : _popupControl(); Do you guys... http://www.ideablade.com/forum/forum_posts.asp?TID=332&PID=768#768 Author: DataMan
Subject: 332
Posted: 26-Jul-2007 at 10:08am

_popupControl();Do you guys have an example where a person is not allowed to open a form or save/update/delete data to a form because they do not have the proper security to do so.

I can understand how the security currently checks to see if the person logging in is in the User table but how would you implement role security on the Customer Entity? Would I write code in the SaveSecurityCheck in each Entity that looks at the UserRole entity and if it passes my security logic then returns true?

Is there a DeleteSecurityCheck or does SaveSecurityCheck run for Updates/Loads/Deletes/Saves?

Thanks

]]> Thu, 26 Jul 2007 10:08:46 -700 http://www.ideablade.com/forum/forum_posts.asp?TID=332&PID=768#768