I am currently writing a CMS and remember someone (it might have been on here) criticise the existing CMS for not having a robust enough user permissions system. I've got a method planned out but it I feel it has fallen into the usual trap of being a bit too fine-grained which makes understanding and implementing it a horror for end use...
Hello, I've created a custom workflow using Visual Studio 08 that uses a custom content type and .aspx task edit form. The tasks are successfully created and assigned to the users. However, only users that are members of the Site Owners group are able to 'Edit' the task items. All others (even though they have contribute and approve perm...
The Goal I would like only a certain group of users (who are in an Active Directory group composed of users from two domains) to be able to execute a web script, in http://www.site.org/protected, after being challenged for authentication. The Setup Windows 2008, IIS 7. User Account Access has been disabled, as it is a pain and someti...
I used windows security to block to users the option of deleting files from the server on SVN clients. (right-click on the repository dir, and security options). now I want to commit a local directory back to the server, but I deleted one file from the dir. I get an error says I don't have permission to delete. is there any other way ...
In Windows, is there a way to check for the existence of an environment variable for another process? Just need to check existence, not necessarily get value. I need to do this from code. ...
I see from BOL that you can apply permissions to a T-SQL synonym, but in playing around with synonyms I'm not clear when you would need to do that if you have already GRANTed permissions to the base object. eg. If I have a synonym in database A that points to a table FRED in database B, then it appears that as long as user Joe is grante...
How do I figure out the role(s) of a user in a site using the webservices API? All I have to go on is the username and domain. I've found that the PermissionsService.Permissions.GetPermissionCollection(url,"Web") will return a collection of permitted users and groups with their permissions masks but I still need to figure out if the us...
Hello, I have an easy script to create and delete a folder, but when I try to delete a folder, it brings up and error. The code: <?php if ($_POST['hidden']) { $key = "../g_test/uploads"; $new_folder = $_POST['nazevS']; $new_dir_path = $key."/".$new_folder; $dir = mkdir($new_dir_path); if($dir) chmod ($new_dir_path, 0777); } if ($_...
Is there a way to create Security Editor dialog using C#, similar to CreateSecurityPage() method available in aclui.dll? ...
How to associate permissions available for a user using a security descriptor? Given a user how to decide whether the user is having particular permission with the help of security descriptor? ...
Hi, I need to add permission levels to a list like: Full Control, Contribute, Manage Hierarchy, view Only, etc. I see here: "programatically add user permission to a list in sharepoint", that this can be done using the Object Model. How would I do the same using Web Services? I tried using the permissions.asmx web services, it works for...
Hi, My friend's website was working fine until he moved the document root from /var/www/xxx to /home/user/xxx Apache give 13 permission denied error messages when we try to access the site via a web browser. The site is configured as a virtual directory. All the Apache configurations were unchanged (except for the directory change). ...
While installing SQL Server 2008 (which included SSAS), I set these permissions, giving a domain group that held our SQL Service Account: . Now I need to change that group to a different one that includes a second service account, but I'm not able to conclusively find the permissions it set. There was overlap with our last domain group,...
I have an Xbap application that is part of an intranet application that needs file system access. Ive made the app full trust, signed it with a valid certificate and imported the cert into ie and the xbap works perfectly. My issue is that I want to gracefully handle a Permission Denied exception if the user doen't have the certificate ...
With Informix I can grant select on a table like; grant select on 'dba'.mytable to someuser as dba; How can I perform this on all tables in the database? ...
We are using Bing and/or Google javascript map controls, sometimes with large numbers of dynamically alterable overlays. I have read http://support.microsoft.com/kb/175500/en-us and know how to set the MaxScriptStatments registry key. Problem is we do not want to programmatically set this or any other registry key on users' computers b...
So, for my clients to who have sites hosted on my server, I create user accounts, with standard home folders inside /home. I setup an SSH jail for all the collective users, because I really am against using a separate FTP server. Then, I installed ACL and added acl to my /etc/fstab — all good. I cd into /home and chmod 700 ./*. At th...
I need to protect a .zip file from being downloaded w/o permission. I would like to be able to provide a direct link to the .zip download to those who have access to the files. <filesmatch .zip> order deny, allow deny from all </filesmatch> does not seem to work. It prevents direct links, but I am not sure how to provide the downlo...
I have two machines, we'll call them machine A and machine B. Machine B is running a Windows service written in C#.net, as the Local System account. Machine A tells machine B's service (using WCF) to open a file located on the network. Since local system is not a network user, it does not have access to network files, and is unable to op...
I'm creating a DAL for use in multiple applications, but I'm not providing any authorization or authentication to verify that the calling application has the permissions to execute the DAL and access the data i.e. making sure the user only sees the information they are allowed to see, to me this is the responsibility of the business laye...