Page security...

Posted on 2005-05-13
Last Modified: 2010-04-07
Okay, so i have implemented forms authentication and authenticated users get redirected to pages depending on their "facility" assignment.

But this will not work for "clever" users who might know to just type in the page name into the url to access other pages (after authentication).

What approach should I use to implement this type of security - whereby each page can validate that the user has the right to view it??

I have a basepageexpired class, which inherits webforms and is inherited by every page.

I was thinking that in the base page I could:

- check which page i'm on
- query database to check if current user has rights to the current page

I'd have to set up a table that would be a look up for the "facility" and have page names in the column.

Does that sound about right??

Appreciate your opinions,



Question by:saleek
    LVL 9

    Accepted Solution

    U need role based authentication

    See this

    LVL 11

    Author Comment

    I think i will handle it all in the database.



    Featured Post

    How to run any project with ease

    Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
    - Combine task lists, docs, spreadsheets, and chat in one
    - View and edit from mobile/offline
    - Cut down on emails

    Join & Write a Comment

    Just a quick little trick I learned recently.  Now that I'm using jQuery with abandon in my applications, I have grown tired of the following syntax:      (CODE) I suppose it just offends my sense of decency to put inline VBScript on a…
    Sometimes in DotNetNuke module development you want to swap controls within the same module definition.  In doing this DNN (somewhat annoyingly) swaps the Skin and Container definitions to the default admin selections.  To get around this you need t…
    Hi everyone! This is Experts Exchange customer support.  This quick video will show you how to change your primary email address.  If you have any questions, then please Write a Comment below!
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now