F
Fabio Gouw
Hello,
I'm developing a web application that will run on an Intranet. I'll use
Windows Authentication, so users can access the application without the need
of filling out a login page.
According which user is using the web app, he/she'll have a dinamic menu,
built with the pages he/she can access. This information is stored in a SQL
Server DB, where each user has his/her permissions.
My question is how can I bind the information on Users table with the user
who is accessing the web app, and how to make it secure.
First I thought to use User.Identity.Name property, so I can put an
"domain\login" column on Users table, but it doesn't sound secure... (Am I
right?)
Does anyone have a suggestion?
Thanks
I'm developing a web application that will run on an Intranet. I'll use
Windows Authentication, so users can access the application without the need
of filling out a login page.
According which user is using the web app, he/she'll have a dinamic menu,
built with the pages he/she can access. This information is stored in a SQL
Server DB, where each user has his/her permissions.
My question is how can I bind the information on Users table with the user
who is accessing the web app, and how to make it secure.
First I thought to use User.Identity.Name property, so I can put an
"domain\login" column on Users table, but it doesn't sound secure... (Am I
right?)
Does anyone have a suggestion?
Thanks