Implementing Role Bases Security For An Application?
Aug 18, 2009I wish to implement some role based security in my application. Has anyone got any links with some usefull info on this subject.
View 2 Replies
ADVERTISEMENT
C# - ASP.NET Directory Access With Role Based Security?
Apr 27, 2011I have an ASP.Net portal like application with multiple roles. I have placed the subpages of that role in its own directory adding a web config with an authorization allowing only that role. I have css and javascript in the root directory that can not get access inside the protected role folders. How can I allow these folders css/js to have access to all roles. Sorry if this is easy question I have searched but I am rather new to ASP.NET
View 1 RepliesImplementing Security On Visual Basics 2005?
Jun 29, 2010I WANT TO impliment security on visual basics 2005 HOW DO I GO ABOUT DOING THAT
View 4 RepliesVS 2008 General Security - Implementing A Piece Of Software I've Created Into A New Environment
Mar 26, 2011I'm looking at implementing a piece of software I've created into a new environment. It is currently accessed via network share by users who have full administrative permissions on their user accounts. These same users will have their accounts locked down excessively. I am wanting to consider now before any changes have been made, any code changes I will need to make as my application makes use of a lot of features that admin users take for granted such as registry editing. My program is running through the .net 3.5 framework and is being accessed on XP machines.
View 5 RepliesSQL Server Application Role Not Working In App
Oct 7, 2009This desktop app written in VB.Net within VStudio 2008 fails when one of our "power users" tries to run the program: Select permission denied on object 'AcctLogon', database 'MDS', owner 'dbo'. The author of the app is out for a few weeks and I am the "fixer" while she's out. Both of our logins for SQL have permissions for db_owner in the MDS database but our user does not. The user has a Windows user login for this instance of SQL. This login has permissions for the public role only in the MDS database.
[Code]...
VS 2010 ASP.NET Membership Role In Windows Application?
Oct 4, 2010i already create new connectionstring in app.config that point to myDB i already create aspnet membership table in myDB using aspnet_regsql i already create new custom provider and set the connection string there.. what i like to ask:
1. why when the app start, it create new folder app_data which contain aspnetDB.mdf eventhough i already create new connection string ?
2. why when i'm using Membership.CreateUser method, it succesfully inserted in myDB.aspnet_Users table but when i'm using Roles.CreateRole method it doesn't inserted in myDB.aspnet_Roles table?
PS: i'm using .net 4.0, sql2008, vs2010
What Application Has Replaced The Role That SourceSafe Used To Provide In Visual Studio 6
Apr 1, 2009In the .NET world, what application has replaced the role that SourceSafe used to provide in Visual Studio 6?
View 23 RepliesVS 2005 Converting Between Numeric Bases?
Apr 6, 2010I'm having an issue with my base conversion program. It seems to have a problem converting from base36 to base10 properly. After debugging all night, I've found that it's one certain function that's not working properly. The function seems to convert every last test number correctly, until I start getting into 11-digit numbers in base36. I have the max digits allowable for base36 set to 12 (so as not to exceed the base10 18-quintillion or so that an unsigned long can hold). I'm starting to think the issue is with VB and not with my code.The function as I've written it is below (DIGITS is a global const string ="0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZ", and itr is a global integer used throughout the code for iteration):
'-----------------
Public Function FromBase10(ByVal iValue As ULong, ByVal cBase As ULong) As String
Dim remaining As ULong = iValue
[code].....
How To Auto-insert A Code Snippet When Implementing Interface Like When Implementing IDisposable
Aug 10, 2010Is it possible to automatically insert a Code Snippet when an interface is implemented? If so, how do you do it? I am looking for something similar to when you implement IDispoable in VB.[code]This will be used by web forms when transfering parameters from one page to the next using Server.Transfer
View 1 RepliesImplementing GOCR Into An Application
Jun 8, 2011GOCR is a common Optical Character Recognition software that can be implemented into almost any programming language. You must convert the image you wish to convert into a PNM file and then proceed to call the executable OCR file. I cannot find any conversion methods for Visual Basic, nor am I quite sure how to send the file to the program and retrieve the text. Has anyone ever worked with GOCR or happen to know anything above?
View 5 RepliesImplementing GOCR Into An Application?
Apr 7, 2011As many of you know, GOCR is a common Optical Character Recognition software that can be implemented into almost any programming language.You must convert the image you wish to convert into a PNM file and then proceed to call the executable OCR fileI cannot find any conversion methods for Visual Basic, nor am I quite sure how to send the file to the program and retrieve the text. Has anyone ever worked with GOCR or happen to know anything above?
View 3 RepliesCall A Function Connected Through The Implementing Application?
Aug 31, 2010I've decided to make my own simple scripting language parser. I've created about 50% of it and it works great! I need to implement "functions". What ever program uses my parser needs to be able to connect functions to my parser for customization. I've implemented "Lua", a scripting language, in a vb.net application of mine. To connect functions to the Lua Parser it used reflections.I need to be able to (by only knowing the name of the function and its structure) call a function connected through the implementing application.
View 2 RepliesC# - Implementing Transaction Processing To Persist Application Data
May 27, 2011Let's say an application needs to persist mostly immutable data. Let's say the application's data files can grow fairly large. How would you implement a simple transaction processing so that changes are either successfully committed or rolled back?
The only requirement is to use built-in .Net libraries. (no databases, no third party libraries)
Here's my current solution. The data file will have three main sections: (1) header, (2) data, (3) index. For now, the header section simply contains an offset to the start of the index section. The data section will store mostly immutable data. The index section will contain serialized objects with enough information to access the data section.
When the application starts, it only needs to deserialize objects from index section. Anything from the data section can be fetched as needed. As the application gets ready to write changes, it makes a temporary copy of the original header and index sections. These would be small relative to the data section. New data would then be appended to the original data section. Once all data has been written, in memory objects would be serialized to the end of the file to become the new index section.
If all this goes without a hitch, the temporary file can be deleted. If something goes wrong, the temporary file can be used to restore the data file to its original state.
Will this work or is there a more elegant approach?
Implementing Timer States(Available,Busy,Away Etc) In A Chat Application ?
Nov 30, 2010I am currently developing a chat application and am trying to include:
Various states, like MSN does, available, busy and away.If the user doesn't touch the keyboard for one minute, the state of the user isto be changed into Away.Or something similar to these.I also need the program to be able to play a sound while running.
Asp.net - PKI Security For .net Application?
Dec 17, 2010I want to use PKI public and private encryption for authentication to allow for a more streamlined and secure application access control system. Any help in the generation of certificate and authentication will be useful. One more question, can i use System.Security.Cryptography.X509Certificates class for the same?
View 1 Replies.net - Application Online Security?
Jan 29, 2011I am developing and application in vb.net winxp+ (windows xp upwards). The application has to receive backup data from clients software located at different pc over the Internet. but am concerned about security of this application on the Internet. what would be the best way to implement security in vb.net 2008 to make sure that the data is not sniffed or interfere with?
am thinking of encrypting the data before sending, saving it that way until it need to be viewed before decrypting. what type of encryption would you suggest? Is there any other way you would suggest this data be sent?
Vb.2008 Security Application?
Feb 8, 2012im finish my application and im finish ex�cutable the my application. and my question he's, if posible somebady want open my executable the my application with vb.2008.is that posible
View 1 RepliesWhat Kind Of Security Has To Be Built Into Application
Jan 23, 2010What kind of security has to be built into the application if it is connecting to a remote database server, mail server, on the company network/over a WAN?
View 9 RepliesVB: Get Compiled DLL's Calling Application Info; COM Security?
Oct 15, 2010Through COM, one can potentially gain absolute control over a target system. For example: using javascript's ActiveXObject object in IE, one can create certain objects which were designed to have direct access or interaction with system properties and files.One would think common sense dictates users disable ActiveX features in IE immediately after installing the browser to ensure their system is protected while surfing the net, or at least paying close attention to which websites they permit. But, I doubt many average PC users know how or why to do this, or just get tired of mirco-managing it over time. I think any PC user or admin my COM class caters to would greatly appreciate not having to deal with that. Thankfully it looks like IE versions come packaged with ActiveX disabled by default nowadays.
I've built a very versatile COM class library in VB. I didn't intend for it to be callable from any website, but that feature is just part of the COM platform. I'd like to prevent the library from being called from IE unless the website is on a white-listed domain to proactively protect the user (and ultimately their entire intranet) from harm from malicious websites. What would be the best method in VB.Net to tell which application called my DLL, to be able to tell if it was called from any command or process originating from IE? And, what domain called my dll? System.Environment.GetCommandLineArgs()(0) gets me the calling application path. With this info, I can compare it to a black/white-list of applications.
Asp.net Mvc - Expose Built-in Security And User Management To A MVC Application?
Jul 23, 2009I have built a MVC website on IIS6. I used the built-in ASP.NET Security without Membership, just the way it was implemented in the template solution. It is easy to secure a contoller or action, but now I need to expose the user management to an admin logged into the site. I understand that the builtin ASP controls for doing this are not "best practice" and are a dog to get working. So what is the best practice for offering user management through a ASP.NET MVC application?
I considered using the Entity Framework and wireing it up to the myriad of stored procs. but that seems awkward. I see options for AccountMembershipService and FormsAuthenticationService. That is what the existing project account controller uses. But, I am not fimilliar with either.I can't help but think that this should have already been there from the project template. This is a fundamental part of any website and you were given 15%, why not the rest?
Asp.net Mvc - Handle Application Security Using ActionFilterAttribute And/or SiteMap Authorization?
Jan 12, 2010i created the following ActionFilterAttribute to check if a user is granted access to a page. I also created two custom Exceptions to handle different scenarios: NotLoggedInException and InsufficientPrivilegeException.
[Code]...
Where do I catch the exceptions to for instance redirect users if not authorized?Should I perhaps use the SiteMap authorization somewhere else instead of using the ActionFilterAttribute and throwing Exceptions..?
note: as you can see I'm using a custom class for BLL.Page. This is a ORM page which has Role based security stored in the database. SiteMap is also populated based on this data
Model For Application Security And Possibly Internet Access?
Mar 5, 2012We are in the process of upgrading to WIN7 support and finding issues with the existing impersonant security model we previously used. So i am looking for suggestions before we hit the code.Application ABC.exe is running on a PC with restricted permissions
View 15 RepliesApplication Attempted To Perform Operation Not Allowed By Security Policy
Sep 27, 2011When I try to run my DLL in Autocad, I got the message below.Application attempted to perform an operation not allowed by the security policy. To grant this application the required permission, contact your.I know there are many threads on this error, but Im not sure about one thing.Can I resolved this on our FilesServer or I have to do something on each computers that will use the DLL ?
View 3 RepliesApplication Security: Counting Days Independent Of System Calander ?
Jun 10, 2011Counting days independent of system calander ?
View 1 RepliesApplication Security: Counting Days Independent Of System Calendar
Jun 10, 2011I want to add a feature to my trial version of the application. After first activation, I want to make it limited to 90 days. But I am concerned about user's changing the date of system hence deceiving my application. Is there any possibility to make it fool proof in a way that even if user takes the calender back, application expires after 90 days of first activation? First activation date has been saved in the database.
View 2 RepliesSecurity - Getting Message When Run The Application - Assembly Does Not Allow Partially Trusted Callers
Apr 28, 2009Out of 70 users of my application 2 are getting the following message when they to run the application... That assembly does not allow partially trusted callers. The reason for the error is that by default .net applications run from a network location have limited permissions. You need to use caspol.exe to add the network folder where your application is being run from to the Trusted Zone. If you do a search on these forums you will find plenty examples of how to do this. It is fairly simple. It will have to be done on every machine that will be running the application and a simple cmd file can be made to do this. The only difference is that I've asked our service desk to install the application to the local C drive which I believe they did.
View 10 RepliesWinforms - Controls Based Security In A Windows Forms Application Using .NET?
Sep 5, 2011I need to implement, Controls Based Security in a Windows Forms Application using VB.NET. I tried google but did not get anything much to work with.
I would like if someone, could suggest some books or tutorials.
VS 2008 Application Attempted To Perform An Operation Not Allowed By The Security Policy?
Jun 10, 2010This error occurs when I want to add my app to the startup keys
My.Computer.Registry.LocalMachine.OpenSubKey("SOFTWAREMicrosoftWindowsCurrentVersionRun", True).SetValue(Application.ProductName, app)
[code].....
Application Running A Silent Install Of An MSI - (how To Disable Open File - Security Warning)
Jun 1, 2010I am writing a small visual basic application to install clean up tools quickly on any machines that we need to work on here at my workplace. I am using 4-5 cleanup programs that I have packaged into MSI's and have batch scripts that I am calling in my visual basic application to run them as silent installs. However, because I am doing the silent installs, windows always pops up with the "open file - security warning" and I have to click run for each individual program. I am wondering how to get around this from my end within the application. I know it can be disabled in windows but I am not wanting to have to go through a process on every machine that I run this program on. I would like to find a fix on the back end in my script.
View 2 RepliesWebBrowser Control Make Application Or The Deployment PC Vulnerable To Any Significant Security Risks?
Mar 17, 2010I have a Visual Basic.Net Windows Forms application to which I am considering adding the WebBrowser control. I'm assuming that the PC's on which this application will ultimately be deployed/installed will have the latest Windows (XP, Vista, or 7) updates, a firewall, and an Internet security suite installed/running.
With this deployment environment in mind, does the WebBrowser control make my application or the deployment PC vulnerable to any significant security risks? Are there any programming issues that should be addressed to eliminate potential security risks when using the WebBrowser control?