acl

Flexible ACL in ASP.NET

Hi, I'm building an application for which I want to use roles managment applicable to individual pages. That is, restrict users' access to pages based on their roles. These roles are stored into the database, as the users. This is the PHP way of doing things and I'm trying to port this to ASP.NET What I need is that someone can point me...

Using MySQL's Membership Provider without autogenerateschema

Hi, How can one use his already existing ACL schema with MySQL's Membership Provider connector? I for one do not want to use the autogenerated table schema, but am happy to alter my own tables to adapt to ASP.NET's rules. For instance I want to use customn table names. How can I point the connector to use them? Thank you. ...

mod_rewrite with location-based ACL in apache?

Hi. There is a CGI-script that provides some API for our customers. Call syntax is: script.cgi?module=<str>&func=<str>[&other-options] The task is to make different authentiction rules for different modules. Optionally, it will be great to have nice URLs. My config: <VirtualHost *:80> DocumentRoot /var/www/example ServerNa...

How can I use PowerShell's get-acl cmdlet when a filename contains brackets?

Suppose I have a file named "test[1].txt". Both of these commands produce no output: PS C:\Temp> dir test[1].txt PS C:\Temp> get-acl test[1].txt PS C:\Temp> The good news is that the dir command has a -LiteralPath switch that tells it not to interpret any characters as wildcards: PS C:\Temp> dir -LiteralPath test[1].txt Direc...

Persisting Zend Framework ACL Lists

Does the Zend Framework (or applications built using Zend_Application) provide any mechanism for persisting ACL lists, or is that detail left to the individual system/application developer? Most of the examples I see online involve setting up your ACL rules in code. I'm curious if there's any standard/preferred way to save these rules ...

Windows 7 Security Policy: How Do I Allow My .NET App to Write to Drive "C:"?

Hi. My application is not supposed to perform any administrative tasks, so I want a normal User account to be able to run it. Only thing is, my application reads from and writes to a database file; if the user running Windows 7 (Or Vista) installs my app in drive C, the drive's default permission set configuration doesn't allow my app t...

Does ACL on Linux impact performance.

We are planning to implement ACL on our Linux platform. Only one particular group is going to come under ACL. This group would have at the max 20 users. All of the restrictions would be at directory level (not at file name level) Would this show any impact on the server's performance/responsiveness? ...

Retrieve Access Control List of Documents for Specific User on Google Docs?

I have a large website at www.mydomain.com. There are 1000 new documents per month and 100 new users per week lets say. I need to be able to programmatically do the following: user goes to www.mydomain.com/documents user sees list of all documents they have access to (not ALL of the docs) I know you can retrieve an ACL for each doc...

Cakephp ACL authentication issue - I'm locked out

I've followed the CakePHP Cookbook ACL tutorial And as of right now I'm just trying to add users using the scaffolding method. I'm trying to go to /users/add but it always redirects me to the login screen even though I have added $this->Auth->allow('*'); in beforeFilter() temporarily to allow access to all pages. I've done this in both ...

Drupal: How long should it take to rebuild permissions

I have just installed the ACL and Content Access module. Imedietly after enabling them I was asked to rebuild the permissions. All perfectly normal I am told. However, I set the 'rebuild' permissions page running about 40 minutes ago and it still says 'Initializing'. How long should it take? Am I doing something wrong? ...

How to make images hosted on Amazon S3 less public but not completely private?

I fired up a sample application that uses Amazon S3 for image hosting. I managed to coax it into working. The application is hosted at github.com. The application lets you create users with a profile photo. When you upload the photo, the web application stores it on Amazon S3 instead of your local file system. (Very important if you host...

Doctrine-based CodeIgniter authentication/acl system

I'm working on web app based on CodeIgniter/Doctrine. I've tested several auth libraries, but all of them use ActiveRecord. Is there a plugin/library that uses Doctrine, or can be adapted to Doctrine?! Or can I use both Doctrine and CodeIgniter in a project?! ...

Acl mechanism for JSF

Is there some ready-to-use ACL mechanism for JSF? I know JBoss Seam comes with something like that, but switching to JBoss Seam is not an option in my case. What I need is to easily define which pages given user is allowed to see and which actions to invoke. ...

Determine what account IIS 7 is using to access folders (and other resources)

Often, out of sheer desperation I will end up enabling "Everyone" access on a folder that a web app is accessing (perhaps for file creation, reading, etc) because I can't figure which user account to enable access on. Obviously, this is a very bad thing to do. Is there a way to determine what account IIS is using at that exact moment t...

cake php AppController and inheritance

hello folks........ In many tutorial of Acl component in cakephp i got instruction that add component either in AppController or in all the other controllers which inherits AppController....... but problem is var $components=array('Auth',Acl); when i use the above line in AppConroller i cant use the Auth or Acl component... but wh...

Strategies for quickly traversing an ACL

We are currently working on a project where the main domain objects are content nodes and we are using an ACL-like system where each node in the hierarchy can contain rules that override or complement those on their parents. Everything is as well based on roles and actions, for example. Node 1 - {Deny All, Allow Role1 View} \- Node 2 - ...

Access Control Lists basics

Hi, I'm gonna add authorization, user and groups management to my application, basically... you will can define a set of permissions for a concrete user or group. For example, you could specify whom can use a concrete resource. So I want to ensure that my assumptions about ACLs are right: A basic rule could be "Grant", "Deny", "NoSet...

AuthComponent: Difference between allowedActions and allow()?

What is the difference between using AuthComponent::allowedActions and AuthComponent::allow? When I Google, I see the majority of examples and documents using or talking about allow(), but only a few using allowedActions. But they both seem similar in usage. ...

What are the model, lft, and rght fields used in the acos table?

What are the cakePHP usages/meanings of the model, lft, and rght fields in a acos table? Similarly, what are the usages/meanings of the lft and rght fields in a aros table? ...

ACL suggestions needed for a small light framework developed

Hello all, I've developed a small framework that was needed for the firm that I work. The problem is I've not made a full level framework, as developers are finding tough time to understand what is what, So I made a simple structure with app/controllers, app/models, app/views so that they can clearly separate the code and can get us...