New Posts New Posts RSS Feed: Field-level Security
  FAQ FAQ  Forum Search   Calendar   Register Register  Login Login

Forum LockedField-level Security

 Post Reply Post Reply
Author
alipoland View Drop Down
Newbie
Newbie
Avatar

Joined: 06-Mar-2009
Location: Poland
Posts: 19
Post Options Post Options   Quote alipoland Quote  Post ReplyReply Direct Link To This Post Topic: Field-level Security
    Posted: 06-Mar-2009 at 11:44pm

Salam all,

Can someone please guide me on how to enforce role-based security at field-level? I need some fields within a table to be hidden|readonly|readwrite based on the current role logged in.
 
Many thanks in advance and peace to all.
 
Ali
God > infinity
 
 
Back to Top
smi-mark View Drop Down
DevForce MVP
DevForce MVP
Avatar

Joined: 24-Feb-2009
Location: Dallas, Texas
Posts: 343
Post Options Post Options   Quote smi-mark Quote  Post ReplyReply Direct Link To This Post Posted: 09-Mar-2009 at 9:58am
Hi Ali,

In your DomainModel if you create a class that implements IEntityServerSaving and IEntityServerFetching you can change what gets returned/saved. The current Principal is in the arguments so you can do your IsInRole functions to determine what action to take. You should take a look at the property interceptors too, they offer a lot of functionality that you may want versus using the EntityServer interfaces.

Mark

Edited by smi-mark - 09-Mar-2009 at 10:11am
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down