May 2002
Security: Unify the Role-Based Security Models for Enterprise and Application Domains with .NET
Role-based security allows administrators to assign access permissions to users based on the roles they play rather than on their individual identities. These privileges can be used to control access to objects and methods, and are easier to identify and maintain than user-based security. The .NET Framework provides two role-based security models, which are exposed as two namespaces: System.Enterprise-Services and System.Security.Permissions. Presented here is a comparison of the two options and a discussion of when each is the right choice. The author also demonstrates the process involved in setting up access security and discusses role memberships. Juval Lowy
Scripting: Windows Script Host 5.6 Boasts Windows XP Integration, Security, New Object Model
Windows Script Host (WSH) 5.6, a major upgrade for the WSH environment, provides some significant improvements over previous versions. A brand new security model that is tightly integrated with security in Windows XP allows administrators to place fine-grained restrictions on scripts reducing the risk from malicious code. In addition, local scripts can now run on remote machines, and enhancements to the object model reduce the amount of boilerplate code needed when writing professional code. This overview of WSH 5.6 explains these changes and how .NET and scripting work together. Dino Esposito
SQLXML 3.0: Build Data-Driven Web Services with Updated XML Support for SQL Server 2000
XML is becoming the ubiquitous data format on the Web, and XML support in SQL Server is evolving to meet the additional demand. Using XML, SOAP, HTTP, and SQL Server, you can now build powerful Web Services easily. To show just how simple it is with SQLXML 3.0, this article walks the reader through the process step by step, from setting up a virtual directory enabling data access via HTTP to executing queries and building Web Services. Finally, the author illustrates the creation of two Web Services clients-one with C# that works with the Microsoft .NET Framework and one with the SOAP Toolkit 2.0 for anyone still using earlier development tools. Christian Thilmany
ASP.NET Security: An Introductory Guide to Building and Deploying More Secure Sites with ASP.NET and IIS, Part 2
Forms authentication is one of the most compelling and useful new features of ASP.NET. It enables developers to declaratively specify which files on their site can be accessed and by whom, and allows identification of a login page. When an unauthenticated user attempts to retrieve a page protected by forms authentication, ASP.NET automatically redirects them to the login page and asks them to identify themselves. Included here is an overview of forms authentication and what you need to know to put it to work. Also included is hard-to-find information on the security of cookie authentication and on combining forms authentication with role-based URL authorizations. Jeff Prosise
WMI and .NET: System.Management Lets You Take Advantage of WMI APIs within Managed Code
Visual Studio .NET and the Microsoft .NET Framework SDK provide a new set of APIs and tools that let you consume Windows Management Instrumentation (WMI) data and events from managed .NET applications. After presenting an overview of what's new for WMI in the .NET Framework and the Visual Studio .NET environment, the author provides an in-depth exploration of the Management Extensions in Visual Studio .NET for Server Explorer. These extensions help you develop management-aware software and come in handy in a variety of distributed application development scenarios. Zina Pozen
Crystal Reports: Add Professional Quality Reports to Your Application with Visual Studio .NET
Crystal Reports for Visual Studio .NET provides a comprehensive reporting solution for .NET developers that is thoroughly integrated with both the Visual Studio .NET IDE and the .NET Framework. Crystal Reports supports ADO.NET, XML Web Services, and ASP.NET server controls and caching. It also integrates seamlessly with the Visual Studio .NET Server Explorer, toolbox, and design environment. It has a rich programming model and flexible options for customizing and deploying reports. These major features and others covered here take the drudge work out of data representation in your own applications. Andrew Brust
Editor's Note: Reflections on the Visual Studio .NET Launch
New Stuff: Resources for Your Developer Toolbox
Theresa W. Carey
Web Q&A: XML Data Islands, Updategrams, Stored Procedures, and More
Edited by Nancy Michell
The XML Files: XSLT Processing, Processing Instructions in XML, Parameterizing Statements in XML, and More
Aaron Skonnard
George Shepherd
Data Points: Building a Tiered Web App Using the DataSet and the ASP DataGrid
John Papa
Cutting Edge: Building Editing Capabilities into the SqlDataNavigator ASP.NET Control
Dino Esposito
Advanced Basics: Handling Transactions Between .NET Components
Ken Spencer
Under the Hood: Link-time Code Generation
Matt Pietrek
C++ Q&A: Ctrl Keys in MFC, Function Overloading, Checking for Null
Paul DiLascia