Restrict user navigation
From: Pravin (expertco_at_vsnl.com)
Date: 05/07/03
- Next message: Alex: "aspnet_wp.exe process not running"
- Previous message: Giovanni Bassi: "Re: SSL with forms authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 8 May 2003 00:46:35 +0530
I have users at different levels (groups) say clerk, manager, director and
so on. Currently the users and passwords are stored in one tables in the
database. The first activity user does is provide username and password. If
user gives valid credentials, a session variable is set to a value else that
session variable is set to zero. On top of each page we check whether the
session variable has non-zero value. This helps me to show the pages to only
the users who have logged in with valid credentials.
Now, I wish to restrict the access to the webpages depending on who has
logged in i.e. manager or clerk or so on. The issue here is, once the person
provides valid creddentials the session variable is set t non-zero value.
And then if the user knows the URL then he can typein the URL in address bar
and can visit that page directly. I wish to restrict this.
Please guide how this can be achieved. Thanks.
-- Regards, Pravin
- Next message: Alex: "aspnet_wp.exe process not running"
- Previous message: Giovanni Bassi: "Re: SSL with forms authentication"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
