VB 2008 Manager application users permissions and roles design strategy

Hi All,

I'm doing a new application and need to be clear in my mind the options available in creating users,roles and permissions and assigning these to the users.

The application will be aa VB 2008 windows forms app with sql 2005 as the backend.

I'm planning to create a sql server login that will be used thrpught the application -and it will have the sysadmin role.
Then I will create tables for users,roles and permissions.
The permissions will be tagged to particular forms -for example Form1 has a Buttons to Add,Save,Delete and close.
Each of these buttons will be flagged in the permissions table together will all other controls in the applocation and if a user has permission to Save then the Save button will be active together with the other required controls.
Otherwise teh control is disabled.

I find this very manual and difficult to maintain.

Is there a more elegant way of doing this???

Thanks in advance.
LVL 12
Norman MainaAsked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

CodeCruiserCommented:
That is how I did it in my app but my permissions were linked to objects. So if a user has the Create permission on Customer and we are on a new customer form then I would enable the save button.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
CodeCruiserCommented:
There is an application which can do this for you but it costs money.
0
Norman MainaAuthor Commented:
Any other ideas?
0
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

Norman MainaAuthor Commented:
No proper answer that answers the question asked.
0
CodeCruiserCommented:
What "answer" are you expecting? That is the way to do it. Sometimes things are harder to implement. If you do not want to do that then pay these guys

http://www.visual-guard.com/EN/net-powerbuilder-application-security-authentication-permission-access-control-rbac-articles/dotnet-security-article-ressources/role-based-access-control.php


And you still have not implemented it?
0
Norman MainaAuthor Commented:
Was actually looking of how to implement this using Code access security feature of the .net framework.

I did it the old fashioned way -not very impressive because it is very manual.(and to have to add licencing features to that is another nightmare)

But i have awarded points because your answer is also right.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Visual Basic.NET

From novice to tech pro — start learning today.