Role-Based Security

Previous page
Table of content
Next page

COM+ provides full support for role-based security. Roles can be added to a COM+ application that contain a list of authorized users or groups. The code within a COM+ application can then check to see if the calling user belongs to a specific role and act accordingly. This allows for method-call-level security against unauthorized use.

To see this in action, first you need to make sure that your COM+ application authenticates method calls. By default, this authentication is turned on, so you should only need to modify these settings if you previously turned them off.

Within your application, you can check to see if the calling client belongs to a specific role with the following line of code:

SecurityCallContext.CurrentCall.IsCallerInRole("My Role");


Before checking to see if a caller belongs to a certain role, you should make sure that security checking is enabled for the application:

if (SecurityCallContext.CurrentCall.IsSecurityEnabled) ...


If security checking is not enabled, the IsCallerInRole method won't do you any good. Also keep in mind that these roles are roles defined using the Component Services control panelthey are not Windows security groups, although you can include a Windows security group in a COM+ role.


Previous page
Table of content
Next page
Microsoft Visual C# 2005 Unleashed
Microsoft Visual C# 2005 Unleashed
ISBN: 0672327767
EAN: 2147483647
Year: 2004
Pages: 298
Authors: Kevin Scott Hoffman
BUY ON AMAZON
CompTIA Project+ Study Guide: Exam PK0-003
Beginning Cryptography with Java
Strategies for Information Technology Governance
Cisco IOS Cookbook (Cookbooks (OReilly))
VBScript in a Nutshell, 2nd Edition
Java All-In-One Desk Reference For Dummies
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy