Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

› WebAssist Forums › Data Bridge › SecurityAssist › Some questions

Some questions

Thread began 8/11/2010 2:55 am by biesheuvel378713 | Last modified 8/13/2010 1:41 pm by Jason Byrnes | 1141 views | 3 replies |

8/11/2010 2:55 am | #1 biesheuvel378713

Some questions

I'm very interested in security assist but I have a couple of questions:

You can blok a part of your website. Let's say I want to block the /admin part of my site and make it only available for admin users if I later add some pages to the admin site will they still be blocked? In asp.net you could easilly block a directory with the web.config and allow users with a specific role. Does this work the same, so security assist will not block each page in the admin directory seperate?

(If searched the internet to block a directory with php but they only come up with htacces, I want to block certain parts of my site with php)

Does security assist support user roles?

8/11/2010 7:20 am | #2 Jason ByrnesWebAssist

The web.config file is not really a part of ASP.Net.

It is a Part of the IIS server that ASP.Net runs on.

it is a server level configuration file.

The same can be said of the .htaccess file.

It is a server level configuration file that is used to configure the Apache server.

The only way to password protect a directory on the server is through the server configuration. On an IIS server you use the web.config file. On an Apache server, you use the .htaccess file.

A php page cannot be used to password protect a directory.

Security Assist can be used to password protect your php pages, you would need to apply it to each page in the directory. If you create a new page, you will need to manually apply the Security Assist restrict access rule.

You can accomplish user level authentication in security assist, see the "User Level Authentication" tutorial in the Solution recipe section of the security assist support page:
securityassist/

8/13/2010 1:24 am | #3 biesheuvel378713

You are right about the web.config. Its however so tightly integrated with asp.net that its hard to make a distinction. I don't like the method of htacces (towards password protection) so that's why I asked it. Seems like security assist gives a full system and it looks very beautifull alternative.

I have one more question. I see that the wizard has a dialog for setting up the login page etc. etc. Can you integrate these pages as plugins with framework builder, is it easy to alter the code?

Thanks in advance..

8/13/2010 1:41 pm | #4 Jason ByrnesWebAssist

yes, security assist pages van be used as includes plugins, you will need to change the form actions to go to the include p[age, and will need to change the redirects in the behaviors as well.

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.