November 15, 2009 at 9:53 pm
Hi.I wanna develop an accounting , Payrol System. in my old system, i Create one table for users and all objects in db are in this table. by value of this fields i control the access of users in application.
but in some application , some users,roles defined in Database and users that define from application mapped to this users.
1) how to do this work.
2) hand-rolled security is better than SQL Server Security?
thanks.
November 16, 2009 at 7:00 am
I'll answer question 2. In my opinion, you should try to avoid having to handle security within your application. If you do not have situations where the data determines who can use other data then you should not roll your own security. Letting Windows/SQL Server handle it is much simpler and, IMO, less likely to have problems.
Jack Corbett
Consultant - Straight Path Solutions
Check out these links on how to get faster and more accurate answers:
Forum Etiquette: How to post data/code on a forum to get the best help
Need an Answer? Actually, No ... You Need a Question
November 16, 2009 at 8:41 am
I would tend to agree with Jack.
If you can leverage SQL security it will make it a little easier..
CEWII
Viewing 3 posts - 1 through 2 (of 2 total)
You must be logged in to reply to this topic. Login to reply