Oper
Posts: 1195
|
| Posted: 03/09/2004, 10:02 PM |
|
we have an intranet aplciation perfectly runign in a enviroment of
50 users, the aplciation have several programs (pages).
The security in CSS is perfect for like 80% of the case but we wnat to make easy the job of teh adm on the company
so right now when he create a user he have an option to setup
Read/Update/Delete/Inser for every Program.
He just create the Group and assign the RIghts to each user dynamic.
its working perfect but:
this part was created in a rush cuase client was needing the aplciation asap. what we did was rip the the function CCuserInGroups.
we search for the right in teh database and assign the Valur false or true set by the Admin to the variables I*allowed during the Class Initated event.
Note: we wirte over the Grey Text(dont likeit) so we decied to change the Common.ASP after was genarted but every time we generate teh code we have to paste few lines.
anyway or event you think we could use to acomlish this without using or having to Modified Grestext os ASP directly?
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
 |
 |
peterr
Posts: 5971
|
| Posted: 03/09/2004, 11:08 PM |
|
There are couple potential options:
1. Modify the text within the grey block (CCSecurityRedirect in Common.asp) and don't worry about it until you upgrade CCS to a newer version in the future. Only when upgrading, you may want to check if everything is still working OK and re-apply your changes if needed.
2. Set the page restriction to "No" so that the CCS security is not being used, but call your own page authentication function in the "After Initialize" event of the page. If the result is negative, set the "Return" variable to the Login page, or any page where you want to send the unauthorized users. For example:
Redirect = "AccessDenied.asp"
_________________
Peter R.
YesSoftware Forums Moderator
For product support please visit http://support.yessoftware.com |
|
|
|
Oper
Posts: 1195
|
| Posted: 03/10/2004, 6:07 AM |
|
Redirect could be an option but the user may have access to read, and update but not for delete!
that why we need to set Security yes to everyone and in our fuction denied few option using
Inserallowed, DeleteAllowed, Etc..
but i was asking casue as till now no matter what we did we never change the grey text, first time we did but we prefer to change the ASP that was already Generated!
so any suggestion avoiding the change to the grey text?
any event occurs beetwen the variable Insetrallowed,Updateallowed are set and the Form?
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
|
|
|
peterr
Posts: 5971
|
| Posted: 03/10/2004, 10:42 PM |
|
You can use this code in the "Before Show" event:
FormName.Insert.Visible = False
and in the "Before Insert" event:
FormName.InsertAllowed = False
_________________
Peter R.
YesSoftware Forums Moderator
For product support please visit http://support.yessoftware.com |
|
|
|
Oper
Posts: 1195
|
| Posted: 03/11/2004, 6:12 AM |
|
FormName.InsertAllowed = False
humm this one sound perfect!
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
|
|
|
|
