MSDN Magazine May 2002

Article
10/23/2019

May 2002

Security: Unify the Role-Based Security Models for Enterprise and Application Domains with .NET

Role-based security allows administrators to assign access permissions to users based on the roles they play rather than on their individual identities. These privileges can be used to control access to objects and methods, and are easier to identify and maintain than user-based security. The .NET Framework provides two role-based security models, which are exposed as two namespaces: System.Enterprise-Services and System.Security.Permissions. Presented here is a comparison of the two options and a discussion of when each is the right choice. The author also demonstrates the process involved in setting up access security and discusses role memberships. Juval Lowy

Scripting: Windows Script Host 5.6 Boasts Windows XP Integration, Security, New Object Model

Windows Script Host (WSH) 5.6, a major upgrade for the WSH environment, provides some significant improvements over previous versions. A brand new security model that is tightly integrated with security in Windows XP allows administrators to place fine-grained restrictions on scripts reducing the risk from malicious code. In addition, local scripts can now run on remote machines, and enhancements to the object model reduce the amount of boilerplate code needed when writing professional code. This overview of WSH 5.6 explains these changes and how .NET and scripting work together. Dino Esposito

SQLXML 3.0: Build Data-Driven Web Services with Updated XML Support for SQL Server 2000

XML is becoming the ubiquitous data format on the Web, and XML support in SQL Server is evolving to meet the additional demand. Using XML, SOAP, HTTP, and SQL Server, you can now build powerful Web Services easily. To show just how simple it is with SQLXML 3.0, this article walks the reader through the process step by step, from setting up a virtual directory enabling data access via HTTP to executing queries and building Web Services. Finally, the author illustrates the creation of two Web Services clients-one with C# that works with the Microsoft .NET Framework and one with the SOAP Toolkit 2.0 for anyone still using earlier development tools. Christian Thilmany

ASP.NET Security: An Introductory Guide to Building and Deploying More Secure Sites with ASP.NET and IIS, Part 2

Forms authentication is one of the most compelling and useful new features of ASP.NET. It enables developers to declaratively specify which files on their site can be accessed and by whom, and allows identification of a login page. When an unauthenticated user attempts to retrieve a page protected by forms authentication, ASP.NET automatically redirects them to the login page and asks them to identify themselves. Included here is an overview of forms authentication and what you need to know to put it to work. Also included is hard-to-find information on the security of cookie authentication and on combining forms authentication with role-based URL authorizations. Jeff Prosise

WMI and .NET: System.Management Lets You Take Advantage of WMI APIs within Managed Code

Visual Studio .NET and the Microsoft .NET Framework SDK provide a new set of APIs and tools that let you consume Windows Management Instrumentation (WMI) data and events from managed .NET applications. After presenting an overview of what's new for WMI in the .NET Framework and the Visual Studio .NET environment, the author provides an in-depth exploration of the Management Extensions in Visual Studio .NET for Server Explorer. These extensions help you develop management-aware software and come in handy in a variety of distributed application development scenarios. Zina Pozen

Crystal Reports: Add Professional Quality Reports to Your Application with Visual Studio .NET

Crystal Reports for Visual Studio .NET provides a comprehensive reporting solution for .NET developers that is thoroughly integrated with both the Visual Studio .NET IDE and the .NET Framework. Crystal Reports supports ADO.NET, XML Web Services, and ASP.NET server controls and caching. It also integrates seamlessly with the Visual Studio .NET Server Explorer, toolbox, and design environment. It has a rich programming model and flexible options for customizing and deploying reports. These major features and others covered here take the drudge work out of data representation in your own applications. Andrew Brust

Editor's Note: Reflections on the Visual Studio .NET Launch

New Stuff: Resources for Your Developer Toolbox

Theresa W. Carey

Web Q&A: XML Data Islands, Updategrams, Stored Procedures, and More

Edited by Nancy Michell

The XML Files: XSLT Processing, Processing Instructions in XML, Parameterizing Statements in XML, and More

Aaron Skonnard

The ASP Column: HTTP Modules

George Shepherd

Data Points: Building a Tiered Web App Using the DataSet and the ASP DataGrid

John Papa

Cutting Edge: Building Editing Capabilities into the SqlDataNavigator ASP.NET Control