The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.
Course Of The Month
5 days, 12 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
These pages is for Administrators only (My Application)
Posted on 2004-08-12
Hello,
Please help restrict my Administrator pages (about 20 pages) from the rest of the other users.
I have my Access database with a table of users that includes a field for UserLevels.
if the UserLevel is 3 and above, that user should be able to access the 20 cfm pages available only for administrators.
Please I would like to request some code and where to put it. Please be clear as possible. It's the end of the week again and I have to come up with the login module by tommorow afternoon. Please, I hope you understand.
Thanks in advance.
PS. All users of my application will have to login. But only Administratrs have the access to the Admin pages.
By the way, i use the basic session method in Ben forta's book. So, those CFlogout, CFlogin is a bit different from what i am doing.
Please help restrict my Administrator pages (about 20 pages) from the rest of the other users.
I have my Access database with a table of users that includes a field for UserLevels.
if the UserLevel is 3 and above, that user should be able to access the 20 cfm pages available only for administrators.
Please I would like to request some code and where to put it. Please be clear as possible. It's the end of the week again and I have to come up with the login module by tommorow afternoon. Please, I hope you understand.
Thanks in advance.
PS. All users of my application will have to login. But only Administratrs have the access to the Admin pages.
By the way, i use the basic session method in Ben forta's book. So, those CFlogout, CFlogin is a bit different from what i am doing.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2
- +1
5 Comments
ok how about this when the user logs in ..
and after u authenticate him with the database values...
create a session variable session.userlevel with the appropriate value
just put a if condition on top of the 20 files...
<cfif IsDefined(Session.UserLeve
Show him some data saying no access to this page
</cfabort>
</cfif>
now put this code in a common file that is UserAccess.cfm
and include this file in the top of the 20 files
Regards
Hart
and after u authenticate him with the database values...
create a session variable session.userlevel with the appropriate value
just put a if condition on top of the 20 files...
<cfif IsDefined(Session.UserLeve
Show him some data saying no access to this page
</cfabort>
</cfif>
now put this code in a common file that is UserAccess.cfm
and include this file in the top of the 20 files
Regards
Hart
Active 5 days ago
i have a similar setup but access levels are different, i put my admin only pages in a separate forlder and have in my Application.cfm in the folder
<cfset localAccesLevel=100> <!--- administrative level --->
<cfset RELLOCPATH = "./">
<cfset PARENTPATH = "../">
<cfinclude template="#RELLOCPATH#noHe
and in validateUser.cfm
<!--- validate user login --->
<!--- check for existance of Auth structure created during valid login --->
<cfif not isDefined("SESSION.Auth.Us
<!--- invalid login --->
<cflocation url="#PARENTPATH#_errorPag
</cfif>
<!--- validate user level --->
<!--- compare the access level defined on the page to the user's access level --->
<cfif SESSION.Auth.AccessLevel LT localAccessLevel>
<!--- invalid user access level error --->
<cflocation url="#PARENTPATH#_errorPag
</cfif>
<cfset localAccesLevel=100> <!--- administrative level --->
<cfset RELLOCPATH = "./">
<cfset PARENTPATH = "../">
<cfinclude template="#RELLOCPATH#noHe
and in validateUser.cfm
<!--- validate user login --->
<!--- check for existance of Auth structure created during valid login --->
<cfif not isDefined("SESSION.Auth.Us
<!--- invalid login --->
<cflocation url="#PARENTPATH#_errorPag
</cfif>
<!--- validate user level --->
<!--- compare the access level defined on the page to the user's access level --->
<cfif SESSION.Auth.AccessLevel LT localAccessLevel>
<!--- invalid user access level error --->
<cflocation url="#PARENTPATH#_errorPag
</cfif>
Or you can use a role based method and then if you are using a homegrown approach
<cfif Find("Admin", Session.UserAccess)>
User allowed
<cfelse>
User not an admin - cflocation them away
</cfif>
<cfif Find("Admin", Session.UserAccess)>
User allowed
<cfelse>
User not an admin - cflocation them away
</cfif>
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Suggested Courses
Course of the Month5 days, 12 hours left to enroll
705 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.