Form for User login

[Cooperdam]

I have completed several reports in SSRS and an ASP.net page interface that uses Reportviewer.

Now we want to roll this out. The customers would login, and get only their own reports. This is done by a parameter on the ASP page called Customers. It would only show the customer name who logged in and not allow it to be changed.

This customer parameter is then used by the reports.

I was interested in hearing any advice or ideas how to build the form for checking the users credentials.

I thought of having these fields in a newly built table.

. Fields in Table.
A. Customer name, Customer number, User name (for login), User password, User_type, Date of last login, future use fields.


One thing to note, is that we have to differentiate between users. The power user can see *ALL reports.

Let's say the Food Services Manager can only see some reports.

 

[NESWalt]

If this is an internal app, are you using Active Directory? The reason I ask is that you have the user's credentials that way, and if they are in a "Power Users" group, or "Marketing", etc, they can be given permissions based on their group membership.

 

[jmeckley]

if this is an internal application and you are using AD to authenticate your users then you can use windows integrated authentication. once the user logs onto the computer there credentials will follow them to the website, no need to log on/off.

if this is a public facing application or you are not using AD to authenticate your users use Forms authentication. this allows you to valid the user against a custom datastore.

in either case, the information will be stored in the HttpContext.User property. from here you can get the
1. user's name
2. if the user is part of a specific role
3. if the user is authenticated

Jason Meckley
Programmer
Specialty Bakers, Inc.

faq855-7190
faq732-7259