Results 1 to 2 of 2

Thread: page access security

  1. Aug 16th, 2012, 10:35 PM #1
    met0555
    met0555 is offline
    Frenzied Member met0555's Avatar
    Join Date
    Jul 06
    Posts
    1,325

    page access security

    Hi,

    I have a website with many pages and many level of user accounts, i want to give a limited access for each roles... So i was thinking of doing it this way, but I'm not sure if it's secure or if there are better ways to do it.
    I will create a DB with two columns, user level (admin..) and page file name (test.aspx), and each time a page is opened it checks the db against the logged in user and the current page url.
    What do u think about this?


    thx
    Reply With Quote Reply With Quote
  2. Aug 18th, 2012, 02:19 PM #2
    gep13
    gep13 is offline
    ASP.NET Moderator gep13's Avatar
    Join Date
    Nov 04
    Location
    The Granite City
    Posts
    21,729

    Re: page access security

    Hello,

    That approach will certainly work, but it does feel a lot like re-inventing the wheel.

    There are a number of systems already in place, i.e. Forms Authentication, Membership and Roles Providers, etc, that can do all of this work for you.

    Before you go ahead and role your own, make sure you have exhausted what is already created for you. As an example, take a look at the Restricted Menu sample that is in my signature.

    Gary
    Remember to mark your thread as resolved. Remember to rate posts that help. Hitchhiker's Guide to Getting Help at VB Forums.

    ASP.NET Tutorials (updated Feb 1st 2009) ASP.NET FAQs (updated July 17th 2011)

    Free Stuff: WebsiteSpark|DreamSpark|BizSpark|eBooks
    Learning Resources: MSDN|LearnVisualStudio|TrainingSpot|ScottGu's Blog|ASP.Net Starter Kits|Regex|RegExLib
    Useful Tools: XPath Builder|UltraMon|RegExBuddy|CopySourceAsHtml|TracExplorer|SQLyog|Chart Controls for .Net|SharePoint Designer|CodeRush Express
    Coding Links: XPath|ConnectionStrings|VB and MySQL|MySQL Connector.Net|My.Settings
    ADO.Net: MSDN Reference|Introduction|Using Access|Always use Parameters|Save and Retrieve Data - jm|An Explanation - jm
    Code Bank Submissions: Code Snippets|Profile Provider|Serialization: C# VB|Restricted Menu|Compressed HttpWebRequest|Enumerate and Add Internet Explorer Favourites: VB C#|C# Tabbed Web Browser|Enhanced Tabbed Web Browser: VB C#

    My Blog - View my MCP Certifications
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules