Security :: Research To Accomplish Very Detailed Permission Handling?
Aug 27, 2010
Currently i have membership and roles setup on my site. Now what is my next step to get more specific control.
Based on what i hav now, i have my pages setup so they are visible or not and links not visible and so on. But now on a more detailed level, say im setup as a user. As a user my default permissions is just to view data.. no editing. But say someone was let go, now instead of granting me full access to everything, i need to be able to go in and provide more permissions to the account.
Example:
Admins:
Add Users
Modify Users
Delete Users
Users:
View Users Detail (only the person that is logged in)
Since the the user that was let go was an admin. They had all the other options, but as a temporary thing, we need to be able to add say permission "Add Users" to the individual user account.
To accomplish this type of control, what do i need to look at to accomplish such a setup?
View 3 Replies
Similar Messages:
Jun 3, 2010
I am using Itext sharp to create a pdf. I am adding an image and I keep getting this error
Request for the permission of type 'System.Security.Permissions.FileIOPermission, mscorlib, ersion=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089' failed.
it is this bit of code that is causing this
[Code]....
If i comment this out, the PDF builds and no errors are thrown (there is just no image)
I don't understand cause I am am trying to do is read a file.
View 2 Replies
Sep 30, 2010
have starting doing a lot of MVC2 development without doing enough research about the EF4. This lead me to a path which I am not happy with. The way that I laid out my project is that my Models are all ADO.NET Entity Framework Models. Each model is representing database able. Today, I attempted to do a LINQ join on entities which belong to two different data contexts. This resulted in a nasty LINQ error telling me that it can't be done. I hate the fact that the only viable way to use the EF seems to create large models.
View 13 Replies
Feb 22, 2011
Here is my code
[Code]....
"fileUpload" is the FileUpload ASP.NET control. The SaveAs method writes the user uploaded file to a specified location on the server. IT WORKS. That tells me that the ASP.NET process has the proper write permission to write to the file.The next line uses an assembly called PdfSharp which you can use to open PDF files and manipulate them. In this case, the line simply opens up the user uploaded file. That is where the error occurs. WTH?
It works on my production machine. It does not work on my local machine. It USED TO. It was never a problem before.So why would it be fine to WRITE to the server, but trying to open a file give an error? Makes no sense. Googling yields a suggestion to put <trust level="Full" originUrl="" /> under <system.web> in web.config. It does not work.
View 3 Replies
Nov 10, 2010
I develop one application that create folder with special permission.
It works, but when I install the application on server I can't set any permission.
I think because it needs domain admin to set this permission... I've one account of one domain admin but how can I do to impersonate when the application set (try to set...) the permission ?
View 2 Replies
Nov 17, 2010
If I want my button to go to another page instead of going to its own page, I can set the PostBackUrl to destination page.Howevery, I read in microsoft website that Server.Transfer is not good if you are concern with security and permission.Is PostBackUrl the same with Server.Transfer?Does the user will not be authenticated again in the new page?
View 6 Replies
Apr 5, 2010
i am mohammed working on website development,as i am having user,admin and employeeif the user enters the page he should see all the user pages,if admin he should see all the pages,if employee only specfic pagesso can i know where exactly i have to give the permissions in to login page,so dat when emplooyee loggs in he will be seeing only his pages,can any one let me know the code,as i am developing site in vb.net,its
PartialClass Users_login
Inherits System.Web.UI.Page
Protected
[code]...
View 4 Replies
May 13, 2010
I have a dll which i downloaded from a lightbox website. It is in the bin folder But i get the error permission cannot be acquired.can anyone assist?
View 1 Replies
Jan 3, 2011
I have several features in admin panel. like userslist,change password for the user,delete user... Still now only one admin user can handle all this.
Now I want to give some features to some users.. ie certain users can view the list ,certain user can edit items in the list etc...
View 3 Replies
Oct 18, 2010
I am new to ASP.NET security model, I need to perform a RIGHT-based security checking for every actions in my applications (e.g. CreateUser, UpdateUser, SearchUser....etc)
However, the built in ASP.NET security model only support ROLE-based security, and I would like to do something like that, but using RIGHTs.
Is there any idea, experience and post I can read and extends the ASP.NET Security Model to use RIGHT-based security to perform granular control.
e.g. How to I write my own HTTPModule, or make use of IPrincipal object.
If there any details steps/tutorial will be great, as I am very new to the ASP.NET.
View 1 Replies
Dec 21, 2010
I have a web application which is using IUSR_machineName, anonymous OFF, integrated windows authentication ON which will call a web service. The web service failed to be called if anonymous in web service is turned OFF. I was thinking to assign Credential programmatically from my web application via "DefaultCredential". But how could I know if IUSR_machineName has the permission to call the web service?
View 1 Replies
Feb 9, 2010
i have a situation where i need to develop a web system where sys. admin can create a shared folder in server and set who can access the shared folder programmatically.
i've manage to find example to create a shared folder from here:[URL]
and i also manage to find example to add user and set folder Security setting from here:[URL]
My problem is how can i add user in the Sharing permission setting since it is a shared folder. Default sharing setting is set to 'everyone'. This mean anyone in my company can browse to the shared file unless i set everyone security setting. I want to remove "everyone" and add users based on the user that i've already add at Security setting.
View 7 Replies
Dec 14, 2010
I am getting this error on my web site and it is preventing the site from compiling. The site is in full trust and the web site files are on the local drive. Web searches show that the only two issues are full trust not enabled or the files on a UNC path that is not trusted and neither is the case here. This site is on an Win2008/IIS7 server. Anyone have any ideas as to why this is happening or where to look for other trust level or security settings to resolve this.
View 2 Replies
Oct 11, 2010
two weeks ago I read a MSDN(?) article how to grant/revoke permission for some users/roles/groups on a specific page or holder temporarily or with condion. The article shows how to do it Form_Load() in c#. But I can't find the link with googling or in MSDN library.
Please let me know if you know the url?
What I want to do is:
There is a folder called employeePDFs.
The folder will have 1000s employees' sub folder ({lastname}{firstname}{employeeID}). Each folder will have very personal indivual PDF files which are manually uploaded.
If an employee logs on, then the logon employee can view a page which has a list of PDF files in his own folder only.
Those PDF files can be assessed only by the user.
View 1 Replies
Sep 21, 2010
I have a custom ASP.NET application which is hosted in the SharePoint _layouts directory. The code uses the object model to do certain actions on a SharePoint list. I'm receiving the following error when trying to perform
[code]...
When I give my user account administrator rights on the server it works fine, so it's a permission problem, but can't figure out what it is?
View 3 Replies
Jun 14, 2010
I need to set folder permission programmaticcaly which is in my GoDaddy server. I have nearly 150 folders in my server so I cant change through server settings or IIS settings. I am using web application. My folder may go on increase in future.I have googled a lot of things.
1. Like Access Control List in System.SEcurity namespace
2.System.principl.security...
I cant able to change the file permission but not a directory.
I must allow all the users to write or move a file to the folder which is in read only mode. That should be done programmatically and should be dynamic.
View 2 Replies
Aug 2, 2010
i have three types of users and i want each one of them to reach only its pages not the othersi want to know what to do in database and the code
View 9 Replies
Jun 28, 2010
I have a very simple and stupid problem but I'm unable to find a solution. I'm trying to create folders and files locally through my code, however I get a permission exception when I try to write in a folder in my application. Normally I'd run this on a remote server, and ask the system administrator for writing permission on this specific folder, but I need to run this locally for the moment.
If I navigate to the file in windows explorer, and right click the folder and click on Properties, I can see that it's set as Read Only. However when I try to disable this tickbox and click on Accept, nothing happens. It ignores me, and next time I open the Properties of this same folder, it's still marked as Read Only.
I've googled this and found a solution which implies using MS-DOS and a command named "attrib". This is not working for me either. I also read about adding an ASP.NET account on my PC and granting the right permissions to this, but I'm not sure how to do is.
View 8 Replies
Apr 23, 2010
In a CreateUserWizard there are 2 dropdownlist to set the country and city of a new user. Where and how can those dropdownlists be assigned datasources from datareader, refreshed and accessed in codebehind for interaction between country and city? I tried but keep getting errors saying control not found. Is it impossible to do codebehind events with CreateUserWizard?
View 3 Replies
Sep 8, 2010
I have locked a set of administration pages on a website using the PrincipalPermission syntax ie:
<PrincipalPermission(SecurityAction.Demand, Role:=RoleBLL.ROLE_NAME_ADMINISTRATOR)>
View 3 Replies
Jun 5, 2010
How should one handle the situation where you may need to filter by a group of users.
Here is the scenario.
I have an administrator role in my company. I should be able to see all the data belonging to me plus all the other users who I have control over.
A plain old user however should only be able to access their own data.
If you are writing regular sql statements then you can have a security table with every user and who they have access too but i'm not sure how to handle this situation in the OO and ORM world.
Any one dealt with this scenario in a web application using an ORM?
View 1 Replies
Sep 27, 2010
I am using the standard createuser wizard (but got same issue with other wizard) and in the CreatedUser event an exception is raised causing the wizard not to reach the next step. If no exception are raised the wizard behave as expected. I have tried to force the wizard to move to the next step using CreateNewMember.MoveTo(this.CompleteWizardStep1); as an exemple but still the web page is in waiting stage for about 5 to 10 mins before it finally reach the final step. I have tried to deal with the exception in the routine it occured or throw it back to the CreatedUser event and deal with it there but nothing changes as of to the move to the next step in the wizard.
View 16 Replies
May 13, 2010
I have 3 seperate applications (under the same domain) for which I use Forms authentication with single sign-on.
The 3 applications have different session timeout periods. I was on various articles that when we use forms authentication and specify the loginurl in the <Forms> tag in the web.config, it should automatically get redirected to the login page, when the session timesout. But in my case, it doesn't happen, I think because of different timeout values.
View 6 Replies
Feb 24, 2011
I'm trying to allow logged user who are in department XYZ to perform some task for my third party App. I have two SQL tables named Users & UserList. The third party app (GoldMine) graps the USERNAME from the Users table and store it as UserID which I then referecnce SessionID. The UserList table has two columns (GM_UserName & Department) which I'm interested in. When a user login into the 3rd party app (GoldMine), i then compare the USERNAME (from Users table) to GM_UserName (from UserList table) and see whether GM_UserName is in = 'Dept XYZ'. Take a look at the SQL query below.
sqlDept = "SELECT USERNAME FROM Users LEFT JOIN UserList ON UserList.GM_UserName=Users.UserName WHERE UserList.Department ='Dept XYZ'"
I'm able to do this.
If Session("Userid") = "TestUser1" Or Session("UserID") = "TestUser2" Then Do this Else Do that End If
BUT unable to do this...
If user's Department = 'Department XYZ' Then
Do This
Else
Do that
End IF
View 2 Replies
Feb 15, 2010
I am writing an internal web app for a company who wont to use their existing Active Directory Logins (rather than a seperate SQL Database User Login Table).
To do this I have done the following
web.config
<authentication mode="Windows">
<identity impersonate="true"/>
<authorization>
<deny users="?"/>
<!-- Allow Public Users to Access -->
<allow users="*"/>
</authorization>
<roleManager enabled="true"
defaultProvider="AspNetWindowsTokenRoleProvider"/>
End
This seems to work on my localhost but I have a couple of questions for you guys.
1) How does this process know which active directory to authenticate against? I know in code you can do
LdapAuthentication adAuth = new LdapAuthentication("LDAP://Server");
But there seems to be no way to do this in the web.config (I'm guessing it will just use the active directory on current machine it's running on?). Is there away to specify which active directory I'd like it to authenticate against?
2) If a user tries to access this remotely (i.e. not on their native windows account) what will happen, will it just default to a login form or just throw a "Permission Denied" error?
View 1 Replies
