Initial Question
How do you create or replace a role (that might or might not exist) in Oracle? For example, the following does not work:
CREATE OR REPLACE ROLE role_name;
GRANT SELECT ON SCM1_VIEW_OBJECT_VW TO role_name;
Any way to do this without PL/SQL?
Update #1
The following does not compile:
CREATE OR REPLACE FUNCTION crea...
I'm trying to implement a custom membership provider in my asp.net web app. The problem is that whenever I call the "Roles.AddUserToRole" method it writes to the default membership db built in asp. The strange thing is that when I call the "Membership.CreateUser" method it writes to my custom membership tables. No sure whats going, an...
what is the code for determining if a user is in a role. I have setup all the users through the ASP.Net configuration Security tab but now want to put logic around some key areas so only people in certain roles can see and access these areas.
...
Hi.
I need to know how to go about implementing general security for a C# application. What options do I have in this regard? I would prefer to use an existing framework if it meets my needs - I don't want to re-invent the wheel.
My requirements are as follows:
the usual username/password authentication
manageing of users - assign pe...
I have a Java web application running on JBoss using JAAS for authentication. I would like to dynamically select the page a user logging in is shown based upon their roles as I have disjoint sets of users that shouldn't have access to the same pages.
I've tried using a Filter, but Tomcat denies access (correctly) to the requested URL be...
I'm using HandleExternalEventActivity with Roles property and I need to check if my custom bool RoleProfile.IsDelegatee(string userName, string workflowName, string activityName, string eventName, string roleName) method finds a match. ("I'm on vacation; UserX should be able to approve 'task X' on my behalf, but not 'task Y'")
I tried ...
Where can I get the DDL to add SQL Roles and Membership to an existing SQL Server database? I want to use the providers but I'd like to manually run the scripts.
...
Hi,
Basically, I'm trying to add support for tracking online users to a project I've inherited, which has a custom MembershipProvider and RoleProvider and uses FormsAuthentication. I've pretty figured out everything except the means by which I'm going to keep updating the lastactivitytime. The way I'd like to do this would be to just ha...
We've got an existing ASP.NET web application that already uses a home-grown role based authentication system. Each user has a role and that role is actually a fully realized class in itself. It still boils down to a pretty standard set of roles (user, administrator, owner, etc).
Now we're starting up a new ASP.NET MVC project that us...
This project I'm working on requires me to keep a local db of admin users and use an external db for regular users. Anyone who passes authentication in the admin db should be assigned the 'admin' role, and anyone authenticated through the other db will always be assigned a 'user' role.
Can I manually assign these roles? I don't need t...
I have a super simple ASP.NET MVC application that uses RpxNow (OpenID) to allow users to login. I now want to let users edit their own account and provide administrator access to edit anyone's account.
I have two separate "Edit Account" views:
~/account/edit/
~/account/edit/1
The first loads the account details based on the logged ...
Suppose a high-speed developer was tasked with building a banking application which would be accessed by many different people. Each person would want to access his or her own account information but would not want others to access it. I would like to know the best practice for restricting access in an MVC application so that only the us...
I'm currently working on an ASP.NET 3.5 intranet that uses role-based security, both on the page level and the page content level in some cases. I'd like to implement a site-wide search, but restrict results according to what the current user would normally see when they visit a given page. I suppose it would have to index the site separ...
I have an ASP.NET Role/Membership based forms authentication site. There's a subfolder and its pages which can be accessed only by a certain role. The problem is, login page does not display any error message if any user from non-allowed role group logins in login page. I mean, when a user from AllowedRole logins, the login page redirect...
the original asp.net roles provider is page oriented.
I mean, if user try to access some page. then some httpModule will check if this user is in the allowed roles.
but, what if i want to make to each role some options. like: read, write, modify
like os file system roles.
my solution was to store this roles info in the Profile(ProfileC...
In my future web application there would be many user roles. Depending on user's role, webapp should restrict users's access to certain pieces of information. I need to implement following features:
depending on role, user should see only columns and rows (in data grid) that are available for current role and user
depending on role, us...
Hi folks.
I know, that this is probably going to be a very simple and frequently asked question. I have searched for solutions, but I am overwhelmned by the huge amount of documentation about memberships and roles. I'm very new to the asp.net and general concepts behind it, and my head is spinning after watching hours of video tutorials...
My application needs the ability to be secured at different levels for different teams. For example, someone may be an administrator for one team but may only be a viewer for another.
Ideally I'd like to have a single, small set of roles, but I'd like to assign people to separate roles per teams. i.e. "Joe" might be an administrator...
Super simple question from an ASP newb: I've got an internal-only ASP.NET website I'm working on that uses Windows integrated auth across the board. There are essentially three roles I want to associate with the site: user, manager, and admin. The site is open to the entire org, so anyone who is authenticated is a user, unless they are a...
Based on the different views documented in SAD which RUP roles should should be responsible for creating the SAD? I thought from the beginning that the SAD was only for a technical audience but from what i can see in RUP it is more than that so it seems like it is not only the Software Architect that should be involved.
...