How to integrate access control with my ORM in a .net windows form application?

I'm not sure that this answer will be helpful in your situation, but it can be interesting for you X-tensive company (developer of DataObjects. Net ORM ) plans to implement similar feature for DataObjects. Net in few months.

X-tensive's plan is to provide full featured ready to use security extension, possibly based on attributes and aspects. Surely it will be closely connected with this ORM, but you can derive some ideas from its description. See feature request and its discussion here You can also take a look at Rhino Security I don't know current status of this project, but it seams such solution can be useful in your case.

I'm not sure that this answer will be helpful in your situation, but it can be interesting for you. X-tensive company (developer of DataObjects. Net ORM) plans to implement similar feature for DataObjects.Net in few months.

X-tensive's plan is to provide full featured ready to use security extension, possibly based on attributes and aspects. Surely it will be closely connected with this ORM, but you can derive some ideas from its description. See feature request and its discussion here.

You can also take a look at Rhino Security, I don't know current status of this project, but it seams such solution can be useful in your case.

By doing this separation you can easily switch data sources (in the future you might have your data on another server and access it through web services). I'm sure that there are a fancy name for this layer, but I call all my interfaces for managers. Presentation -> Managers -> Data Access Layer -> DB Example: var user = Program.Components.Get().

GetById(1); user. FirstName = "Jonas"; Program.Components.Get(). Save(user); In the managers you can use IIdentity and IPrincipal (built in access control interfaces in .

Net) to control access. http://msdn.microsoft.com/en-us/library/ms172765(VS.80).aspx.

I am developing a general database query tools, a . Net 3.5 Windows Form application. In order to make the presentation layer is independent of the database layer.

I use an ORM framework, XPO from DevExpress. But, I have no access control function built in. I surfed Internet and I found in WCF Data Services, there is an interesting concept, Interceptor, which is following AOP(Aspect Oriented Programming).

I am wondering who has such an experience to build access control in ORM. It should be a general method and controlled by users in runtime. So any hard coding is not acceptable.

It could be based on attribute, database table, or even an external assembly. I am willing to buy a ready solution. Any suggestions are welcome.

I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.

Related Questions