Security Settings

Field Description:

Administrator Login (Hard-Coded) Administrator user id and password
Login Name Login Name for administrator
Password Password for adminsitrator
Use Existing Table Link to existing table for login name and password validation
Table Existing table in database containing login name and password information
Login Name Field Login Name field in table used for authentication
Password Field Password field in table used for authentication

Auto-login

ASP.NET Report Maker supports auto-login. When you enable the auto-login feature, a few cookies will be placed on the user's computer to identify the user, meaning that the user do not have to type username and password every time he/she visit the site. For this reason, you should advise your users not to use this feature on a public or shared computer, as any other user of the computer will be able to access the account.

Advanced Security
ASP.NET Report Maker's Advanced Security feature allows you to setup User ID, assign User Levels to users and create a complete user registration system. To setup, click the [Advanced] button.

 

User ID
User ID Security secures data at record level. Protected tables must have an [User ID Field] for identifying which user a record belongs to. The User ID field names can be different in tables though. When User ID security is enabled, users can only access their own data.

[Parent User ID Field] stores the parent User ID that the user belongs to. For example, a parent user can be the manager that the employee reports to. You can select an Parent User ID for users so the parent user can view the child users' records as his/her own.

Steps to setup User ID security for different tables/views:

  1. Click on User ID in the left pane,
  2. Select the [User ID field] from your user table, this field is usually the primary key of the User Table. (note: if this field is not set, the feature is disabled)
  3. To enable Parent User ID security, select the [Parent User ID field] from your user table, (note: if this field is not set, the feature is disabled)
  4. In the [User ID Field] column, select the User ID Field for the tables/views that requires User ID security.

 

User Level
User Level Security secures data at table level. Each user level is granted with specific permissions to tables in the database.

There are 2 types of User Level security:

1. User Levels - User Levels and the permissions are defined in the project. If you change them settings after script generation, you'll need to modify the generated script or re-generate the scripts again. (Dynamic User Level as provided by ASP.NET Maker is not supported by ASP.NET Report Maker.)

Steps to setup User Level security for different tables/views:

  1. Click on User Levels in the left pane,
  2. Select an integer field in your user table as the [User Level field], (note: if this field is not set, the feature is disabled)
  3. Define your user levels, click icon the add an user level and icon to delete an user level.

There are two built-in user levels:
Administrator - Administrator is a built-in user level that has all permissions plus the privileges to modify User IDs and User Levels. Its permissions are same as that of the hard-coded Administrator Login
Anonymous - Anonymous is the default user level before logging in.

Note: You may need to use the hard-coded Administrator Login to log on and assign user levels to users initially.

 

Also See:

Tutorial - User ID Security
Tutorial - User Level Security

 

 
 ©2007 e.World Technology Ltd. All rights reserved.