| Product | Company | Try Visual Guard	| Support | News | Contact us | Site Map | Home How to... Visual Guard Support website Visual Guard .NET Update List Visual Guard PB Update List Visual Guard Technical documentation
Visual Guard for .NET Visual Guard for PowerBuilder _________________________ Visual Expert for PowerBuilder Visual Expert for Oracle Visual Expert for Sybase ASE Visual Expert for SQL Server _________________________ Enable for PowerBuilder REX for PowerBuilder Try Visual Guard for .NET Try Visual Guard for PowerBuilder

Visual Guard for .NET  Key Features  Authorizations

EnglishFrançaisEspañolDeutsch

Visual Guard for .NET Key Benefits Key Features Authentication Authorizations Auditing and Reporting Demos Screenshots Try Visual Guard Price Request Support White Papers Press Release		Authorizations     What type of permission can Visual Guard manage How does Visual Guard .NET defines permissions When can you define and grant permissions   Authorizations define what a user can do in an application: Basically, you define what the user is allowed to see, do and modify in your applications based on his role. Specific words are used to define authorization: Permissions, Rights, Restrictions, Privileges…. There are two ways of defining authorizations: The most secure way is to forbid everything by default, and then grant permissions to allow possibilities. This way, if you forget to define a permission, the user won’t be able to do something he should, rather than accidentally do something he shouldn’t. The faster way is to allow everything by default, and then you assign restrictions to forbid some actions. This way is faster because typically there are fewer restrictions than permissions. But as a result you usually end up with a role based access solution that is complex, costly to maintain and difficult to update. The need By default, an application includes code that defines the permissions to run it. But this means that each time you define a permission, you need to go through the entire development process again (specification, coding, testing, deployment, etc). This is a sharp issue because: Applications typically are updated only every 2 or 3 months, whereas permissions can require much more frequent updates. Bridging the gap between the functional requirements and permission’s technical implications can be very time consuming. Complex permissions are often identified only when the an application is in production, requiring an immediate fix. The solution: Modify dynamically your applications With Visual Guard .Net, you do not write code in the application to define permissions. Your code is dynamically modified in runtime. You can create or modify permissions without going through the entire development cycle of coding, testing, deploying, waiting for feedback… You can define permissions any time, even when the application is in production. They are effective immediately. Top What types of permission can Visual Guard manage? There is no limitation on what permission you can implement with Visual Guard. Any change you want to make in your dotnet application and any restriction are possible. You can create permissions on graphical components or business objects as well as objects which manage the access to the Database. For instance, you can: Hide or disable fields, menu options, tabs, controls… Switch a form into “read only” Filter data in a list Grant access to Webservice Modify business rules… Visual Guard can secure any dotnet components, for instance : GUI objects Non visual objects Dynamic objects SQL Statements Top How does Visual Guard .NET defines permissions Visual Guard uses the reflection mechanism provided by the .Net framework to modify the application. This lets you manage manage permissions totally independently from the code. Visual Guard provides several solutions for defining permissions: Properties Actions: Visual Guard can list all the objects (graphical and non graphical) and their properties. The developer uses a Wizard to identify the object related to the permission and assign a new value to one of its properties (like “visible” = “false” if you want to hide a control). This permission definition is then stored in the Visual Guard repository. The application code remains unchanged. Visual Guard modifies the application at runtime according to this permission. Script Actions: A script action is composed of code that you write. This script is stored in Visual Guard repository and applied directly to your application. Again, the application code remains unchanged. Testing permissions in your application: You can also define the permission in your application: You can write code in the application to verify whether a permission (or a role) is granted to the current user, and execute the permission if the test is successful. Limiting Method Access: You can define for which role a Method is accessible. Limiting Folder Access: You can define for which roles a folder is accessible (ASP.NET applications only). The following page presents the various solutions provided by VG to adapt your application to business requirements: http://www.visual-guard.com/support/index.php?option=com_content&task=view&id=40&Itemid=43 Top When can you define and grant permissions? As default, we suggest a two-step process: Step 1: The development team uses Visual Guard developer tools to define permissions. Each permission is given a functional name (allow editing customers, hide personal info, etc) to make it easy for administrators to understand it. Step 2: Administrators (non technical people) use Visual Guard administration tools to manage user accounts and grant them roles and permissions.   Previous: Authentication Next: Auditing and Reporting Take the tour... Try Visual Guard now!       Key Features What is Visual Guard? Authentication Verifying the identity of the user Authorisations What a user can do in an application? Auditing and Reporting Visual Guard ready-to-use auditing and reporting features Visual Guard Security Tools Developer, Administrator and Auditor Tools How does it work? Technical Specifications Visual Guard detailed features in pdf     Request a trial version Request a trial version of Visual Guard! more info   Active Directory Re-use AD accounts for .Net authentication more info   Ressources See a demo for .NET Getting started Visual Guard Architecture How to... (Flash movies):   Integrate VG into Winform apps   Integrate VG into ASP.NET 2.0 apps   Manage user roles and memberships Visual Guard Support Website Visual Guard Technical Documentation Visual Guard Update List