Security

[John Pearce]

I need to extend security in a group of screens to determine the records a
user can enter/find based on a location code.  

At this point, it seems the best thing to do is build a dataset with the
user (signonid) and allowed location code.  The main menu would use the
Initialize procedure to do a lookup in this dataset to find the user and
their allowed location code and pass that to the lower level screens.  

The lower level screens would have a PostFind procedure to check the
location code from the record retrieved versus the allowed location code
passed from the main menu.  If the two codes don't match, issue an ERROR.
For new records, an edit (or input) procedure on the location code would be
used to check the allowed location code.

Has anyone done something similar in the past and have I missed anything?
Is it reasonably secure? Are there are other suggestions on how to
implement this style of security?

Thanks for any suggestions or help you can provide.


------------------------------------------------------------------
John Pearce  <jpearce@rmi.net>       | Bethesda Management Company 
Speaking for only myself             | Colorado Springs, CO  USA
= = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = = =
Subscribe: "subscribe powerh-l" in message body to majordomo@lists.swau.edu
Unsubscribe: "unsubscribe powerh-l" in message to majordomo@lists.swau.edu
This list is closed, thus to post to the list, you must be a subscriber.