veyb
Posts: 1
|
| Posted: 02/21/2005, 3:24 PM |
|
Hey all,
Just wondering if there is an alternate way to set up user access to multiple CCS applications.
For example, if you have 20+ CodeCharge applications for users from various departments in a company, the standard security model requires that you have 20+ Level/Group fields in your user database.
Each time you create a new application you need to add another Level/Group field in the user database.
This is fine if an SQL administrator is responsible for maintaining user security but what if you wanted a standard employee to maintain security access to various CCS applications, perhaps even using a CCS interface?
I was just wondering if it was possible to support the following security model at all?
- have a database configuration of the following three tables
|User|, |Application|, |UserApplicationAccess|
- The User table would contain all the user names and a unique ID
- The Application table would contain a list of all current applications with an associated unique application ID
- The UserApplicationAccess table would contain three fields, the user ID, the application ID and then an access level in the third field
Using the above, all you have to do to add a new CCS application is to add a new row to the Application table.
Anybody have any ideas if this is possible at all?
Thanks in advance for any replies.
Cheers!
|
 |
 |
peterr
Posts: 5971
|
| Posted: 02/21/2005, 3:33 PM |
|
I believe that it is easy to implement any security model that you like. Just create a function that checks user's access to a page, then call that function from any page.
See http://forums.codecharge.com/posts.php?post_id=43087 for an example.
_________________
Peter R.
YesSoftware Forums Moderator
For product support please visit http://support.yessoftware.com |
|
|
|
DonB
|
| Posted: 02/23/2005, 7:47 AM |
|
It would be nice to have the CCS security features implemented as a class we
could extend or inherit from.
--
DonB
http://www.gotodon.com/ccbth
"peterr" <peterr@forum.codecharge> wrote in message
news:6421a6fda62360@news.codecharge.com...
> I believe that it is easy to implement any security model that you like.
Just
> create a function that checks user's access to a page, then call that
function
> from any page.
> See http://forums.codecharge.com/posts.php?post_id=43087 for an example.
> _________________
> Peter R.
> YesSoftware Forums Moderator
> For product support please visit http://support.yessoftware.com
> ---------------------------------------
> Sent from YesSoftware forum
> http://forums.codecharge.com/
>
|
|
|
|
Oper
Posts: 1195
|
| Posted: 02/25/2005, 1:09 PM |
|
right now we are using Allow to all user to every page.
Of course must be logged)
And after initialize we check for the security for that Program or Form
in a Database
PROGRAM
................GROUP
..............................USER
So you have an Application where you set group and what restriction every program Program/Resource.
I was trying to cleanup so i could upload (but too much work right now)
i will try to upload in a near future (App is ASP) but will work for any application.
You will just need to call a function on every after initialize page
CheckSecurity(.....) etc.
let see if i got sometime to cleanit
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
|
|
|
|
