Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
Multi-level security and record level access
Message
From
14/12/2003 20:32:49
Hilmar Zonneveld
Independent Consultant
Cochabamba, Bolivia
 
 
To
14/12/2003 19:27:15
Jordan Pastourel
Worksafe Management Systems
Toowong, Australia
General information
Forum:
Visual FoxPro
Category:
Databases,Tables, Views, Indexing and SQL syntax
Title:
Re: Multi-level security and record level access
Miscellaneous
Thread ID:
00859012
Message ID:
00859016
Views:
15
With the help of the Visual Extend framework, I do the checking of user-levels with a list of forms.

A table of forms includes the form name, and levels required for open, edit, delete, ...

The user table, of course, lists the user-level as well.

Instead of placing each form somewhere on the menu, there is a special form that lists available forms. This list is populated through a SQL - SELECT command, which of course can specify the user-level.

Having a form open your forms, instead of placing each form on the main menu, is very flexible; it becomes easy to add or delete forms. Just add an entry into the forms table!

Note: The above functionality was built-in, into the Visual Extend framework. I extended it for my own purposes, mainly in that I added a "department" field (some forms are only relevant for certain departments (or sections, or workgroups), within the company).

>Hi all,
>i am working on bumping up the security on the system i am developing and i have hit a bit of a cross-roads. what i need to do is as follows:
>--create security levels like a tree structure. top level can access all information. second level can only access info at it's security level and all levels below it. and so on.
>--have the ability to have variable number of security levels. ie. not tie it down to say 6 levels of security.
>--filter the main system table based on the security level of who logged in.
>
>the issue occurs here. how do i approach this. do i add a new field to the main table to hold what the security level was of the person who logged the info? and then, when someone logs on i have a list of security levels it can access and filter on the records that have these security levels? (sounds like it might be slow).
>or do i, at the time the user saves, concatenate a string together consisting of all the security levels able to access this record and filter on the table whether the logged in security level is contained within that string. (seems to stagnant. what if a new sublevel is added to the security that should be included).
>or is there another way someone can think of? perhaps linking in the security table somehow (the security table at this stage resembles the info needed for creating a treeview - id,parentid,levelname,type,image).
>any help with record level multi-access security would be much appreciated.
>
>thanks,
>Jordan.
Difference in opinions hath cost many millions of lives: for instance, whether flesh be bread, or bread be flesh; whether whistling be a vice or a virtue; whether it be better to kiss a post, or throw it into the fire... (from Gulliver's Travels)
Previous
Next
Reply
Map
View

Click here to load this message in the networking platform