StrataFrame Forum / StrataFrame Application Framework / Role Based Security

RBS Error when Viewing Permissions

Purnell W Glenn — Sat, 26 Apr 2008 09:33:27 GMT

I'm getting an error when in the Security Editor.

If you choose the top level Permissions and then select any permission from the right pane "All Permissions" view. You get the error displayed below, I also got the same error running form the RBS Sample.

Exception
Could not create permission editor.

Source : MicroFour StrataFrame Security

Stack Trace:
at MicroFour.StrataFrame.Security.SecurityDialog.CreatePermissionForm(Int32 ProjectPK, Int32 ItemPK, String Category, Boolean IsCopy)
at MicroFour.StrataFrame.Security.SecurityDialog.EditPermission()
at MicroFour.StrataFrame.Security.SecurityDialog.lvDetail_DoubleClick(Object sender, EventArgs e)
at System.Windows.Forms.Control.OnDoubleClick(EventArgs e)
at System.Windows.Forms.ListView.WndProc(Message& m)
at System.Windows.Forms.Control.ControlNativewindow.OnMessage(Message& m)
at System.Windows.Forms.Control.ControlNativewindow.WndProc(Message& m)
at System.Windows.Forms.Nativewindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)

Role Based Security Editor

Geoff Hirst — Mon, 28 Apr 2008 10:52:57 GMT

Chaps,

I have fallen into a problem. I have enabled what I thought was security in my application and where it is at the moment it presents a login to the user and that's it. I was just embarking on the actual security portion, deciding what user roles can get into what forms etc. When I discovered that the security editor that you provide actually looks at the security tables in the SF database, while in my application the security dialog is actually looking at the security tables in my application. As I understand that permission sets can't be altered while an app is running, is there any way that I can use your application to look at the tables in my application.

I have tried this but the SFSProjects table is not present in my application, and I wouldn't actually expect it to be.

I am on 1.6.6 if that makes any difference.

thanks

Geoff

Single Sign On

Chan — Sun, 27 Apr 2008 08:14:38 GMT

Hi,
Does SF support single sign on? If no, any plan to implement this?

Thank you

Password Change Dialog Custmization

Ramakant Kulkarni — Wed, 23 Apr 2008 07:56:55 GMT

Hi,

Can We change the Password dialog box as we can customize the login screen.

Can I create a view in SQL Server that pulls on the RBS tables?

StarkMike — Fri, 18 Apr 2008 16:23:22 GMT

For a little backstory you can review this link... if ya want...

http://forum.strataframe.net/Topic4501-21-1.aspx

Here is my question... I'll do my best to explain it clearly ... ;-)

I have a table called Locations... Here is a sample of the records

LocationID LocationName RBSKey
1 Canton RBS.Canton
2 New Philly RBS.NewPhilly
3 Champioin RBS.Champion

We are controlling the locations our users have through RBS. That is why i included the above link... You guys gave me the idea earlier...

Now my question is this... I want to create a view that will only show the Products available in the locations the user has permission to. This would be easy if they could only have permission to one location... but they can have permission to multiple locations... so rather than front load all the records and then run a for...next loop and delete all the records they dont have access to ... i'm hoping I can create a view that will use the RBS tables linked by the RBS keys in the locations table in my database.

Is this clear?

Access SecurityBasics from Class Library

Chan — Wed, 09 Apr 2008 10:42:59 GMT

Hi,
I would like to access SecurityBasics from a class library. I faced problem that, .NET unable to locate it even though I have added it to reference. It just working fine in Windows Application.

Any ideas?

Thank you

RBS and Oracle

Purnell W Glenn — Wed, 02 Apr 2008 09:00:14 GMT

I'm in the planning stage of designing a large app that need to run on MS SQL and Oracle. I want to use the RBS on both platforms, because it would allow me to have a single core appp when complete. I have read posts on this issue that RBS does not work on oracle and I may can not have an option to install SQL express.

I like to know is there another work around, which aloud the RBS to point to oracle. Even if I have to do some work.

Security Editor Error

Nadr S Rajab — Wed, 02 Apr 2008 08:46:45 GMT

when I try editing a user or try adding a new user and save the new users details I get the following error:

Note: This error has started since upgrading to 1.6.5, previous to that it had been working fine

SqlException
Invalid column name 'us_DisplayName'.

Source : .Net SqlClient Data Provider

Stack Trace:
at System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection)
at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection)
at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj)
at System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj)
at System.Data.SqlClient.SqlDataReader.ConsumeMetaData()
at System.Data.SqlClient.SqlDataReader.get_MetaData()
at System.Data.SqlClient.SqlCommand.FinishExecuteReader(SqlDataReader ds, RunBehavior runBehavior, String resetOptionsString)
at System.Data.SqlClient.SqlCommand.RunExecuteReaderTds(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, Boolean async)
at System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method, DbAsyncResult result)
at System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method)
at System.Data.SqlClient.SqlCommand.ExecuteReader(CommandBehavior behavior, String method)
at System.Data.SqlClient.SqlCommand.ExecuteDbDataReader(CommandBehavior behavior)
at System.Data.Common.DbCommand.System.Data.IDbCommand.ExecuteReader(CommandBehavior behavior)
at System.Data.Common.DbDataAdapter.FillInternal(DataSet dataset, DataTable[] datatables, Int32 startRecord, Int32 maxRecords, String srcTable, IDbCommand command, CommandBehavior behavior)
at System.Data.Common.DbDataAdapter.Fill(DataTable[] dataTables, Int32 startRecord, Int32 maxRecords, IDbCommand command, CommandBehavior behavior)
at System.Data.Common.DbDataAdapter.Fill(DataTable dataTable)
at MicroFour.StrataFrame.Data.DbDataSourceItem.GetDataTable(DbCommand Command, OnChangeEventHandler CallBack)
at MicroFour.StrataFrame.Data.SqlDataSourceItem.GetDataTable(DbCommand Command, OnChangeEventHandler CallBack)
at MicroFour.StrataFrame.Data.DbDataSourceItem.GetDataTable(QueryInformation QueryInfo, OnChangeEventHandler CallBack)
at MicroFour.StrataFrame.Data.DataLayer.GetDataTable(QueryInformation QueryInfo, Boolean RegisterNotification)
at MicroFour.StrataFrame.Business.BusinessLayer.FillOrGetByPrimaryKey(Object[] PrimaryKeyValues, Boolean ReplaceCurrentDataTable)
at MicroFour.StrataFrame.Business.BusinessLayer.FillByPrimaryKey(Int32 PrimaryKeyValue)
at MicroFour.StrataFrame.Security.UserEditor..ctor(Int32 ProjectPK, Int32 UserPK, Int32 ExistingUserPK, Boolean IsCopy)
at MicroFour.StrataFrame.Security.UserEditor..ctor(Int32 ProjectPK, Int32 UserPK)
at MicroFour.StrataFrame.Security.SecurityDialog.EditUser()
at MicroFour.StrataFrame.Security.SecurityDialog.cmType_UserEdit_Click(Object sender, EventArgs e)
at System.Windows.Forms.ToolStripItem.RaiseEvent(Object key, EventArgs e)
at System.Windows.Forms.ToolStripMenuItem.OnClick(EventArgs e)
at System.Windows.Forms.ToolStripItem.HandleClick(EventArgs e)
at System.Windows.Forms.ToolStripItem.HandleMouseUp(MouseEventArgs e)
at System.Windows.Forms.ToolStripItem.FireEventInteractive(EventArgs e, ToolStripItemEventType met)
at System.Windows.Forms.ToolStripItem.FireEvent(EventArgs e, ToolStripItemEventType met)
at System.Windows.Forms.ToolStrip.OnMouseUp(MouseEventArgs mea)
at System.Windows.Forms.ToolStripDropDown.OnMouseUp(MouseEventArgs mea)
at System.Windows.Forms.Control.WmMouseUp(Message& m, MouseButtons button, Int32 clicks)
at System.Windows.Forms.Control.WndProc(Message& m)
at System.Windows.Forms.ScrollableControl.WndProc(Message& m)
at System.Windows.Forms.ToolStrip.WndProc(Message& m)
at System.Windows.Forms.ToolStripDropDown.WndProc(Message& m)
at System.Windows.Forms.Control.ControlNativewindow.OnMessage(Message& m)
at System.Windows.Forms.Control.ControlNativewindow.WndProc(Message& m)
at System.Windows.Forms.Nativewindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)

where is the Us_DisplayName column used?

Thanks in advance

Erro ao adicionar um LoginForm

Ronald W Wolochn — Tue, 01 Apr 2008 09:39:21 GMT

Tenho um projeto usando o Devexpress como principal, e quando adiciono o loguin form do strata para fazer o loguin, copiei os metodos de um projeto strata com seguranca para o program.cs mas esta apresentando este erro (imagem):

Projeto de seguranca nao aparece no Solution Preferences

Ronald W Wolochn — Tue, 01 Apr 2008 12:12:02 GMT

Me corrija se estiver errado...

Tenho 2 conexões do StrataFrame design-time components (My Conection, StrataFrame Data Store). Pelo que entendo estas conexoes server para manter os componentes de design do strata frame (Bo, etc).

Quando crio um projeto de segurança, apos ja ter importado todas as tabeals SFS para meu banco de dados, seleciono a conexao (Myconection) pois as seguranca deve esta no meu bd e nao no bd de design do strata.

Quando faço isso, o solution preferences abre, mas nao mostra meus projetos de seguranca, pois o meu data base esta setado ainda para o Strata Frame Data Store.

Ao mudar o Database Conection para a conexao My Conection , o Solution Preferences nao abre.

Oque pode ser?

Read Only Permissions

Tim Dol — Tue, 01 Apr 2008 09:25:42 GMT

I'm setting up form security permissions and have a question regarding the Read Only option.

I created four permissions per form, View, Add, Edit and Delete. If I give 'View' permissions and Deny Add, Edit and Delete, have I essentially granted Read Only Permissions on the Form?

Do you suggest I check the option 'Do not allow read-only as a possible action for this permission' on the four form permissions to elimiate any confusion for the user setting the permissions?

Thanks

Tim

Active Users

Tim Dol — Thu, 27 Mar 2008 15:37:24 GMT

Is there an easy way to get a list of active users from SFSUsers? I assume the Active Flag is encrypted in the us_Data field.

Thanks
Tim

Restriction - overlapping error

Rogerio Mauri — Wed, 05 Dec 2007 18:44:13 GMT

When I add to a new period in the register of restrictions the system is not verifying the overlapping of the periods.

Speed up application startup

Marcel Heitlager — Thu, 13 Mar 2008 17:30:09 GMT

Is there a recommended way to do that? I'm using both Strataframe and VFP through UDP. It is a little slow at startup especially on slow machines (duh).

But how would you recommend starting up app and login screen at same time? If login fails, just close entire app. But if succeeds everythings allready there (or almost).

Thanks,

Marcel

P.S. continue to love working with your framework especially new version and now also the security editor and ddt. Saves tons of time.:)

Security Database preference....

Edhy Rijo — Tue, 11 Mar 2008 22:21:35 GMT

Hi All,

I am setting up the Security Features in one of my projects and would like to know what is the preference for the Security Database to be used:

Use the same database where all the project's table will be included or
Use a separate database just for the security tables?

Thanks!

RBS and SQL Server Authentication and question about the SF security dialog.

Geoff Hirst — Tue, 04 Mar 2008 12:27:41 GMT

hi Guys,

please forgive me being a little wet behind the ears on this. I have just started implementing RBS into my application and one thing has been nagging me for a while.

My application will most likely be deployed in scenarios where there is no domain controller so I am opting for SQL Server authentication. I have set up RBS and it works well so far. However, my database connection is still using Windows authentication and I need to move this now to SQL Server authentication which requires the set up of logins on SQL Server, yes?

I was working through the security editor and saw that it creates users and I thought that this might create the needed logins on SQL Server, but this didn't happen. So, what I am asking here is what is best way of organizing a SQL Server login for my application that the data connection can use and access the application database.

I hope the above makes sense.

Q2.

Using your SecurityDialog, is there any way I can put my applications name on it? I would rather not create a custom one just to add my application name.

thanks

Geoff.

Set Form Based on CurrentUser/Role

Bill Cunnien — Sat, 01 Mar 2008 10:36:12 GMT

In order to do what I wanted to do I utilized the ShowGateway() method in the program.cs. I added two forms to the collection in InitApplication. Then I added the following code to the ShowGateway method:

if (System.Environment.MachineName != "COMPNAME")
{
e.FormIndexToShow = 0;
}
else
{
e.FormIndexToShow = 1;
}

This does work. My actual code involves a little more string manipulation in order to limit the number of workstations to three that get FormIndex 1; however, if I logged on to those workstations as myself (an admin), it would be nice to get the general window (index 0). That won't happen, though. Only the one form will be displayed.

So, here is my question: how do I set the main form based on the current logged in user name or a role assigned to that user?

Thanks,
Bill

Questions regarding Role-based Security

Ben Kim — Mon, 02 Apr 2007 09:43:17 GMT

Hello,

I am creating an application base that will be used for all of our WinForm executables. Attached is the project that illustrates the following three issues:

1. When applying themes to the application, the User Panel's label controls do not update with the chosen "theme" until I run the mouse cursor over the control. Is there a way to force a refresh? Should I have to?

2. Create a new security user and save the new record. Next Edit the same record and try to change the Permissions: Default Action and Restrictions. Notice there should not be any permission records available. The framework throws a Null Reference Exception:

NullReferenceException
Object reference not set to an instance of an object.

Source : MicroFour StrataFrame Security

Stack Trace:
at MicroFour.StrataFrame.Security.UserEditor.SaveData(TreeNode Node, SetDataPiece SetPiece)
at MicroFour.StrataFrame.Security.UserEditor.cboAction_SelectedIndexChanged(Object sender, EventArgs e)
at System.Windows.Forms.ComboBox.OnSelectedIndexChanged(EventArgs e)
at System.Windows.Forms.ComboBox.WmReflectCommand(Message& m)
at System.Windows.Forms.ComboBox.WndProc(Message& m)
at System.Windows.Forms.Control.ControlNativewindow.OnMessage(Message& m)
at System.Windows.Forms.Control.ControlNativewindow.WndProc(Message& m)
at System.Windows.Forms.Nativewindow.Callback(IntPtr hWnd, Int32 msg, IntPtr wparam, IntPtr lparam)

Should these controls be available if there are no Permission records? Is there a way to more gracefully trap this error?

3. Restart the application. Use the new user created in step 2 to sign on. A SQL exception will occur:

System.Data.SqlClient.SqlException was unhandled by user code
Class=16
ErrorCode=-2146232060
LineNumber=1
Message="Invalid object name 'dbo.SFSUserRolePermissionInfo'."
Number=208
Procedure=""
Server="DEVSVR2"
Source=".Net SqlClient Data Provider"
State=1
StackTrace:
at System.Data.SqlClient.SqlConnection.OnError(SqlException exception, Boolean breakConnection)
at System.Data.SqlClient.SqlInternalConnection.OnError(SqlException exception, Boolean breakConnection)
at System.Data.SqlClient.TdsParser.ThrowExceptionAndWarning(TdsParserStateObject stateObj)
at System.Data.SqlClient.TdsParser.Run(RunBehavior runBehavior, SqlCommand cmdHandler, SqlDataReader dataStream, BulkCopySimpleResultSet bulkCopyHandler, TdsParserStateObject stateObj)
at System.Data.SqlClient.SqlDataReader.ConsumeMetaData()
at System.Data.SqlClient.SqlDataReader.get_MetaData()
at System.Data.SqlClient.SqlCommand.FinishExecuteReader(SqlDataReader ds, RunBehavior runBehavior, String resetOptionsString)
at System.Data.SqlClient.SqlCommand.RunExecuteReaderTds(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, Boolean async)
at System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method, DbAsyncResult result)
at System.Data.SqlClient.SqlCommand.RunExecuteReader(CommandBehavior cmdBehavior, RunBehavior runBehavior, Boolean returnStream, String method)
at System.Data.SqlClient.SqlCommand.ExecuteReader(CommandBehavior behavior, String method)
at System.Data.SqlClient.SqlCommand.ExecuteDbDataReader(CommandBehavior behavior)
at System.Data.Common.DbCommand.System.Data.IDbCommand.ExecuteReader(CommandBehavior behavior)
at System.Data.Common.DbDataAdapter.FillInternal(DataSet dataset, DataTable[] datatables, Int32 startRecord, Int32 maxRecords, String srcTable, IDbCommand command, CommandBehavior behavior)
at System.Data.Common.DbDataAdapter.Fill(DataTable[] dataTables, Int32 startRecord, Int32 maxRecords, IDbCommand command, CommandBehavior behavior)
at System.Data.Common.DbDataAdapter.Fill(DataTable dataTable)
at MicroFour.StrataFrame.Data.DbDataSourceItem.GetDataTable(DbCommand Command, OnChangeEventHandler CallBack)
at MicroFour.StrataFrame.Data.SqlDataSourceItem.GetDataTable(DbCommand Command, OnChangeEventHandler CallBack)
at MicroFour.StrataFrame.Data.DataLayer.GetDataTable(DbCommand Command, Boolean RegisterNotification)
at MicroFour.StrataFrame.Business.BusinessLayer.FillDataTable(DbCommand CommandToExecute)
at MicroFour.StrataFrame.Security.BusinessObjects.SFSUserRolePermissionInfoBO.FillByUser(Int32 UserPK)
at MicroFour.StrataFrame.Security.LoggedInUser.CreatePermissionsListRolesOnly(Int32 UserPK)
at MicroFour.StrataFrame.Security.LoggedInUser.CreateNew(SFSUsersBO UserInfo)
at MicroFour.StrataFrame.Security.Login.AttemptLogin(Object sender, EventArgs e)
at ApplicationBase.ETILogin.OnAttemptLogin() in C:\ETIDev\ApplicationBase\ETILogin.vb:line 30
at ApplicationBase.ETILogin.cmdOk_Click(Object sender, EventArgs e) in C:\ETIDev\ApplicationBase\ETILogin.vb:line 282
at System.Windows.Forms.Control.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnClick(EventArgs e)
at System.Windows.Forms.Button.PerformClick()
at System.Windows.Forms.Form.ProcessDialogKey(Keys keyData)
at System.Windows.Forms.ContainerControl.ProcessDialogKey(Keys keyData)
at System.Windows.Forms.TextBoxBase.ProcessDialogKey(Keys keyData)
at System.Windows.Forms.Control.PreProcessMessage(Message& msg)
at System.Windows.Forms.Control.PreProcessControlMessageInternal(Control target, Message& msg)
at System.Windows.Forms.Application.ThreadContext.PreTranslateMessage(MSG& msg)

I am unsure about this issue. I do not see any tables, even in your samples that have this name. Could this be caused by the fact I do not have any securable forms created as of yet in this project?

Any ideas would be greatly appreciated!

Ben Kim

Not so fast on the sunshine and roses boys

Charles Thomas Blankenship — Thu, 07 Feb 2008 20:03:54 GMT

I rebuilt the security database using the DDT, added the security user and password, made the user a dbo, successfully launched the security maintenance form, tried to add a new user and viola ... there appears to be a Japanese Beetle in the rose garden. Did I miss a step when deploying the security database?

Login form error

Charles Thomas Blankenship — Thu, 07 Feb 2008 12:23:32 GMT

I get the currentrowindex -1 error when I screw up and enter the wrong password.

What might be causing this?

Thanks,

Is there a comparable method like SecurityBasics.CurrentUser.IsInRole("NameOfRole")?

Bill Cunnien — Mon, 04 Feb 2008 15:39:09 GMT

All I want to do is simply make something invisible...a navigation group on a DevExpress Navigation Bar Control. Here is my attempt after setting up roles and permissions, then DDT to deploy:

if (SecurityBasics.CurrentUser.GetPermission("SystemMaintenance").Action == PermissionAction.Grant)
{
AdminNavBarGroup.Visible = true;
}
else
{
AdminNavBarGroup.Visible = false;
}

I have a role called "Administration". A permission key was created for a category called Administration (not technically related). The key is use above and it is called "SystemMaintenance". The key is given grant rights for the "Administration" role. I removed myself from that role to test. The only thing that may be gumming up the works is the fact that my profile is marked as an administrator. Does the administrator bypass any and all permission sets?

What would be nice is SecurityBasics.CurrentUser.IsInRole("Administration"). It would simply return a boolean value. It look like I have to create a dictionary list then walk the list to see if the user is in the role or not. Is that right?

Thanks for your help,
Bill

Permission -> Category -> Role

Bill Cunnien — Tue, 05 Feb 2008 14:42:53 GMT

If I have a category of permissions assigned to a role (all keys are granted for that category), then add a new key to the same category, the new key is not marked for the category in that role. Is this by design? Basically, I will need to check every role where the category is assigned and make sure that the new permission is activated. Not a big deal...just making sure I am doing this correctly.

Thanks!
Bill

Status/features of auditing?

Greg McGuffey — Tue, 23 Jan 2007 18:00:23 GMT

What is the status of the auditing feature of the security module?

How will it work?

Trouble! Users on Server . . . Permissions on Local

Bill Cunnien — Thu, 17 Jan 2008 13:44:36 GMT

I manually created a bunch of users based on our AD structure, but I did the work within the run-time application. Now, I want flesh out the permissions, but the same security window will not allow me to add permissions. So, I read the documentation. It says that permissions can only be added through the design-time interface. Whoa! Am I stuck, now? I have users on the server and not on the local. I need to add permissions, but they will only go on the local. What do I do to synchronize these databases?

Thanks,
Bill

security data location?

yh — Tue, 23 Jan 2007 10:44:55 GMT

I input some data (like users&roles&permissions) using the 'Security Editor' , Where did these data go?

I did not see these data in any of the SFS tables? Please guide.

Also how should I using these data in the application? Thank you.

Yong

How does RBS work with Windows Authentication?

Bill Cunnien — Fri, 21 Dec 2007 14:25:59 GMT

If I have Windows authentication turned on (SecurityBasics.AllowWindowsAuth = true) how do I pass the user and password from the OS to the application so I can authenticate in the app without having the user logging into my application directly?

Thanks,
Bill

Prevent User from logging into same program multiple times...

StarkMike — Fri, 04 Jan 2008 12:59:15 GMT

Is there a way to prevent the same user from logging into the same program more than once? For instance sometimes we have people use one persons login credentials from more than one computer.

Thanks

Security Editor does not open

Sachin Saxena — Fri, 21 Dec 2007 04:20:20 GMT

Hi,

I created an application with various forms and I created users, permission and assign permission to each user.

Everything works fine besides it that whenever I click on "SecurityEditor" button in my application it show me "Access Denied" pop up even user is autorized to open the security editor.

1. if (SecurityBasics.CurrentUser.GetPermission("Secure").Action == PermissionAction.Grant){

2. loForm = new SecurityDialog();

3. loForm.MdiParent = this;

4. loForm.Show();

5. }

6. else

7. {

8. MicroFour.StrataFrame.Messaging.MessageForm.ShowMessage("Access Denied", "Access 9. has been denied to the security editor.", "",

10. MicroFour.StrataFrame.Messaging.MessageFunction.OK,

11. MicroFour.StrataFrame.Messaging.MessagingIcon.Forbidden,

12. MicroFour.StrataFrame.Messaging.MessagingSounds.Warning);

13. }

Here debugger crossed the line 1 and whenever it reaches the line no 4 it shows the pop up "Acccess Denied". Why?

I could not understand it. Can you help me to solve this problem?

Active Directory User

Bill Cunnien — Wed, 19 Dec 2007 13:16:51 GMT

Do I need to import AD users/groups into a database from which StrataFrame can retrieve user data for authentication and authorization? Or, can I simply use these entities directly (database connection to the AD database directly)? I really do not want to use anything other than the active directory. All of my necessary data is already there. I really did search through both the documentation and the forums for an answer but I missed it somewhere.

Thanks,
Bill

Shared Settings File on a web server

Douglas Riley — Thu, 06 Dec 2007 07:37:30 GMT

Is it possible to have winform users access a shared settings file located on a web server (example: via http://www.sitename.com) instead of an internal network drive?

If not, is it best to include a shared settings file during deployment to each user and send out settings file updates when necessary? I am trying to avoid having to give users database account info (username, password) during initial win app setup :unsure:.

Thanks!

Doug

Authentication Exception

Larry Caylor — Fri, 22 Dec 2006 12:28:04 GMT

Any ideas on what is causing the attached exception?

-Larry

Windows Authentication

Tim Dol — Mon, 19 Nov 2007 08:58:21 GMT

We have customers using windows authentication feature in role based security and it's worked perfectly, however since 1.6 or 1.61, (I'm not sure), the role based security password change dialog is appearing asking the users to change the password even though the windows authentication box is checked. They have to change the password to get past the screen, but when they log back in they still have to use their windows password.

When using Windows authentication do we need to check 'Password never expires' ?

Thanks,

Tim

Change Password Dialog Issues/Questions

Greg McGuffey — Wed, 29 Aug 2007 16:55:55 GMT

I just added a call to show the user the change password dialog. However, there are some problems with it.

- The user isn't set. The user name textbox is blank. How does this get set? I'm calling after logging on, so there is a current user.

- The Confirm Password label is cut off. I tried to set the form as resizable, but the label isn't anchored.

- The tab order is apparently whacked. It tabs from the old password to the OK button, that's all.

Maybe there is another way to call this that I'm missing?

Role based security on multiple applications

MarcoR — Fri, 02 Nov 2007 10:56:28 GMT

We are looking at how to streamline role based security for multiple applications. Each application or web service having it's own database is a little over the top, since we could easily end up having 50-100 roles databases. Don't want to maintain that :). Is there a recommended practice for doing this using StrataFrame ? Thanks!

Exception during logon

Ralph Rutschmann — Thu, 01 Nov 2007 03:15:03 GMT

Hi,

my app throws an exception if one clicks OK with empty user name and password during logon. Can this be fixed?

Thanks in advance,

Ralph

Restriction Error

Rogerio Mauri — Sat, 03 Nov 2007 08:01:17 GMT

When I try to attribute to a restriction to an user the program returns error. :crying:

Attached image.

USing security with DB2

Keith Chisarik — Fri, 26 Oct 2007 11:19:26 GMT

I don't even think I should try to store the security tables in DB2, agree?

So I will just have a separate SQL instance for security? I am fine with that and see pretty detailed instructions on how to support the tables in a separate database.

Just really making sure I didn't miss anything here. Does the above sound solid to you?

Also, how would this work if I decide to architect my application so that it will support a truly "disconnected mode" as in I just found out that users might need to run it at times on a laptop with no internet access, then save the data to the server at a later time. I was going to just use XML or a local SQLEXPRESS or SQL Compact database, but I'm not sure how not being able to connect to the security tables will work in that scenario.

Need Help Real Bad With Security

Douglas Riley — Mon, 29 Oct 2007 16:44:02 GMT

Hello all! I have read over and over the steps in the help file on implementing security in a Strataframe Win App, but I feel I am still missing a step or two :w00t:! I am working on an application where the SQL tables (application and Strataframe) exist on a remote server. The application is set up for security (at project creation). I am trying to add users, roles, etc. but I do not know if I needed to:

1) Design the application against a local database and populate the users, roles, etc. there, then export the data to the remote server

2) Use the Role-Based Editor to connect to the remote server and create users, roles, etc. (but I keep getting an error trying that)

3) Or do something else I am totally unaware of.

I feel I just do not know the process. If anyone can help, I would appreciate it!! It already is going to be a long night! :crazy:!

DPrimetime

Access to registry key denied with standard user level in windows

Nadr S Rajab — Sun, 21 Oct 2007 08:20:44 GMT

I've installed Role based security and everything works fine based on the following conditions.

While logging into a domain and the windows user account is set as power-user or Administrator then everything is fine. If the user logging is a restricted user (Windows users group) then I get the following error:

Access to the registry key 'HKEY_LOCAL_MACHINE\Software\MicroFour\StrataFrame\Security\LoginForm' is denied.

Source : mscorlib

Stack Trace:
at Microsoft.Win32.RegistryKey.Win32Error(Int32 errorCode, String str)
at Microsoft.Win32.RegistryKey.CreateSubKey(String subkey, RegistryKeyPermissionCheck permissionCheck, RegistrySecurity registrySecurity)
at Microsoft.Win32.RegistryKey.CreateSubKey(String subkey)
at Microsoft.Win32.Registry.SetValue(String keyName, String valueName, Object value, RegistryValueKind valueKind)
at MicroFour.StrataFrame.Win32.RegistryRepository.WriteValue(String ValueName, String Value)
at Primary_Reports.CustomLogin.cmdOk_Click(Object sender, EventArgs e)
at System.Windows.Forms.Control.OnClick(EventArgs e)
at System.Windows.Forms.Button.OnClick(EventArgs e)
at System.Windows.Forms.Button.PerformClick()
at System.Windows.Forms.Form.ProcessDialogKey(Keys keyData)
at System.Windows.Forms.ContainerControl.ProcessDialogKey(Keys keyData)
at System.Windows.Forms.TextBoxBase.ProcessDialogKey(Keys keyData)
at System.Windows.Forms.Control.PreProcessMessage(Message& msg)
at System.Windows.Forms.Control.PreProcessControlMessageInternal(Control target, Message& msg)
at System.Windows.Forms.Application.ThreadContext.PreTranslateMessage(MSG& msg)

The only way at the moment to get everyone up and running is to change there access level in windows. Is this by design or a bug?

Thanks

Nader

Permission to change field value

Chan — Wed, 17 Oct 2007 10:46:24 GMT

Hi,
I need to allow user to specify which user has permission to offer 100% discount to customer. Where could I call GetPermission() to prevent unauthorized user to specify "invalid" value?

Thank you