database login script with secure save variable
From: aaapaul (kapaul@gmx.net)
Date: 03/30/03
- Next message: Paul G: "forms auth/web.config file location"
- Previous message: Mark Walker: "RE: Are domain/machine names required when specifying roles"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "aaapaul" <kapaul@gmx.net> Date: Sun, 30 Mar 2003 09:24:29 +0200
asp.net newbie, please help:
How to create a secure database login script with ASP.NET
Hello !
I have to create an internet customer portal.
My database is a table with orders
The fields of my table:
ordernumber, customernumber, units ...
Each customer has an unique customer number. The customer logs in with
customer number and password
The views of the portal have as data source the sql statement: "select *
from orders where customernr = "
How can I gurantee that each user can only view his datasets ?
Is it secure to save the customernumber in a sessionvar and each view take
access to this sessionvar ?
Should I use the sessionID ?
Do you know any template for such a problem in ASP.NET or PHP ?
Thanks
aaapaul
kapaul@gmx.net
keywords: login script authentificate sql server asp asp.net php portal
database session
- Next message: Paul G: "forms auth/web.config file location"
- Previous message: Mark Walker: "RE: Are domain/machine names required when specifying roles"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
