.NET Tutorials, Forums, Interview Questions And Answers
Welcome :Guest
Sign In
Register
 
Win Surprise Gifts!!!
Congratulations!!!


Top 5 Contributors of the Month
MarieAdela
Imran Ghani
Post New Web Links

Page Level Security

Posted By:      Posted Date: September 24, 2010    Points: 0   Category :SharePoint
 

How do I limit what User/Groups can see a page in SharePoint 2007? Within on particular SITE, I want to be able to say, for example, only Users in the X group can see this page.

I see on the Page Setting the "Audience Targeting" option, but that does not restrict anyone outside that group from clicking "All Site Content" then finding and opening the page from under Pages.

Can someone point me in the right direction?

Thanks in advance.


Todd C - MSCTS SQL Server 2005 - Please mark posts as answered where appropriate.


View Complete Post


More Related Resource Links

Secure It: WS-Security and Remoting Channel Sinks Give Message-Level Security to Your SOAP Packets

  

As more organizations adopt XML-based Web Services, the need for message-level security has become evident. WS-Security, now supported in the Microsoft .NET Framework, addresses this need. Using the WS-Security framework, developers can implement channel sinks to intercept Remoting messages as they pass through the .NET Remoting infrastructure. The sink can read the message, change it, and pass it along. During this process, the message can be signed for added security. This article explains how to implement a Remoting channel sink that will modify the Remoting message by including a UserName token in the header, then sign the body using the token.

Neeraj Srivastava

MSDN Magazine November 2003


Web Part working fine on the top-level page but 'Not Safe' error on lower-level pages.

  
Hi,

I have created a Web Part which reads and parses the SharePoint logs in order to display usage information of the page it resides on.  The Web Part works perfectly on the top page, reading and displaying the information desired.  However, once the Web Part is added to any page lower in the site heirarchy (sub-page) the same Web Part throws the following error:

Error 
 
Web Part Error: A Web Part or Web Form Control on this Page cannot be displayed or imported. The type could not be found or it is not registered as safe.

Show Error Details
Hide Error Details

[UnsafeControlException: A Web Part or Web Form Control on this Page cannot be displayed or imported. The type could not be found or it is not registered as safe.]
  at Microsoft.SharePoint.ApplicationRuntime.SafeControls.GetTypeFromGuid(Guid guid)
  at Microsoft.SharePoint.WebPartPages.SPWebPartManager.CreateWebPartsFromRowSetData(Boolean onlyInitializeClosedWebParts)
 


Of course the current version of the Web Part is in the SafeControls list on the web.config.

The Web Part was originally designed to return site activity only for the top default.aspx page and worked fine but started to fail in the manner described above once I added the following line of code to return a SPCo

Passing values from web page to custom security trimmer in SharePoint 2010

  
Hi, In SharePoint 2007 we had a custom security trimmer that implemented ISecurityTrimmer interface. We also had a custom webpart used for search. Now, using HttpContext we passed values from the webpart to security trimmer with additional info needed to trim the results. It worked since trimmer was executed in the same w3wp process as webpart. Now in SharePoint 2010, the architecture for ISecurityTrimmer2 has changed, as it's executed in search process (other w3wp) - not the webpart w3wp so it has no access to the HttpContext. Question is: how to pass custom data, in form of the string, to a security trimmer when search is done from custom code in webart?

Report Level Security in SSRS using Tsql

  
So i am Brand new in this area i have developed reports before and deployed them but never got an oppurtunity to work on security and who gets to see what.. Purpose of the view is thats what im thinking..   We have a reports database has 100 reports . What we are trying to do is have a faster way to manage report subscriptions. The tables i have is Analysts, SalesRep,SalesRepSubs and dbo.users.Dbo users are our web portal users where they can view reports. I want to create a table in which every report is viewed per security level. We have 6 layers of security layer 1 is lowers to layer 6 being highest. This is the relationship between tables Salesrep(SRID PK) Salesrep_sub (SRID_SUBID PK) Analysts : (AnalystIDPK) Users: The Table has all Users who are Salesrep,Sales Repsub and Analysts)(PKID PK) and we have cols SRID, SRID_SUBID & AnalystID) in this table. use Pricing go Alter View dbo.User_Access   AS select S.SR_name,u.SRID,sr.SRsub_name,u.SRID_SubID,U.Userid,u.username,u.Email, u.SecurityLevel,a.AnalystID from dbo.Users u join tbl_Analyst a on a.AnalystID=u.UserID join tbl_SalesRep s on s.SRID=u.SRID Join tbl_SalesRep_Sub sr on sr.SRID_SubID=u.SRID_SubID My question is what do i do next? Add this view to Report server? or how can i make it functionl?????????FM

Report Level Security in SSRS using Tsql

  
So i am Brand new in this area i have developed reports before and deployed them but never got an oppurtunity to work on security and who gets to see what.. Purpose of the view is thats what im thinking..   We have a reports database has 100 reports . What we are trying to do is have a faster way to manage report subscriptions. The tables i have is Analysts, SalesRep,SalesRepSubs and dbo.users.Dbo users are our web portal users where they can view reports. I want to create a table in which every report is viewed per security level. We have 6 layers of security layer 1 is lowers to layer 6 being highest. This is the relationship between tables Salesrep(SRID PK) Salesrep_sub (SRID_SUBID PK) Analysts : (AnalystIDPK) Users: The Table has all Users who are Salesrep,Sales Repsub and Analysts)(PKID PK) and we have cols SRID, SRID_SUBID & AnalystID) in this table. use Pricing go Alter View dbo.User_Access   AS select S.SR_name,u.SRID,sr.SRsub_name,u.SRID_SubID,U.Userid,u.username,u.Email, u.SecurityLevel,a.AnalystID from dbo.Users u join tbl_Analyst a on a.AnalystID=u.UserID join tbl_SalesRep s on s.SRID=u.SRID Join tbl_SalesRep_Sub sr on sr.SRID_SubID=u.SRID_SubID My question is what do i do next? Add this view to Report server? or how can i make it functionl?????????FM

security top total and current level

  
the locig of data is Country 1 - City1 - Company1 -> Nett Income Country 1 - City1 - Company2 -> Nett Income Country 1 - City1 - Company3 -> Nett Income                                                  Total Income   How can i achive the following logic  - the user (role) Company2 have to see only Total for City 1 (Company1+Company2+Company3), just total and Country 1 - City1 - Company2 -> Nett Income I can use dimension data and check Country 1 - City1 - Company2 but in this case he/she can't see totals for City 1 any ideas ?  

How to Provide Security at User level base in asp.net for certain pages

  
 Hi I have a site We have different Pages under one folder. we have stored these pages information in a database table with pageid. Then we have User access table. there we store userid and pageid , for which pages user has access. Now I need to provide access to that pages only . What to do. Could you please provide answer asap.   Thanks  

Transport level security with netTcpBinding

  
Does service and client need to be part of domain with netTcpBinding endpoint configured to used Transport security mode with Certificate based client credential type and protect level set to EncryptAndSign <bindings> <netTcpBinding> <binding name="CertificateWithTransport" maxBufferPoolSize="100000000" maxBufferSize="100000000" maxReceivedMessageSize="100000000" portSharingEnabled="true"> <readerQuotas maxDepth="100000000" maxStringContentLength="100000000" maxArrayLength="100000000" maxBytesPerRead="100000000" maxNameTableCharCount="100000000" /> <security mode="Transport"> <transport clientCredentialType="Certificate" protectionLevel="EncryptAndSign"/> </security> </binding> </netTcpBinding> </bindings> Thanks      -= JL =-

Page level variables and style

  
Making my first ASP.NET/C# program which utilizes three ASP.NET Calendar controls and allows the user to choose the year/month from dropdown lists and then adjusts the three calendars accordingly.  i.e. if the user chooses August, Calendar1 will be June, Calendar2 will be July, and Calendar3 will  be August, and then pulling dates of events from an SQL database and changing the colors of days on the calendars of the days.I got it working like I want it --- the program fulfills its function.  However, the code is absolutely horrible and hard to follow.  I want to learn some good style and clean it up, but I'm not even sure where to begin.  For starters, I had to pretty much declare every variable throughout the program at page level and static, otherwise the values were getting reset to 0 and blank upon postback.  So the top of my code looks like: public partial class _Default : System.Web.UI.Page { public static String selectedclient; public static int selectedyear; public static int selectedmonthminus2; public static int selectedmonthminus1; public static int selectedmonth; public static String selectedyearstring; public static String selectedmonthminus2string; public static String selectedmonthminus1string; public static String selectedm

RSS - Is there a way to display all new content across several subsites on a top level home page ?

  

I have an Intranet site that contains several departmental intranet sites.

Is it possible to have a web part on the homepage of the top level intranet that displays all recently added content to the various sub sites ?

regards,

Counie


Error: There are no page layout files available in the master page library of the top-level site.

  
I exported one of the subsite using stsadm and imported into a new site collection, I could access the new site collection but whenever I try to create a new page in my new site collection I get the following error.

There are no page layout files available in the master page library of the top-level site. Add one or more page layouts to this library before you create a page or set page properties.

 
Please help. Thanks.

Menu - Role security not working on second level of sitemap

  

I have role assignments on both the first and second level of my menus within my sitemap file.  The first level works fine, and I only see items assigned to my role.

But roles assignments seem to have no effect on the second level.  It seems like if you have access to the first level, you have access to everything on the second level.

Is this correct?


From my sitemap (either a SalesRep or an Administrator can see everything underneath):

    <siteMapNode title="Administration" roles="SalesRep,Administrator" description="Admin" >

      <siteMapNode title="CompanyMaintenance" roles="SalesRep" url="~/Admin/CompanyManagement.aspx" />

      <siteMapNode title="Initialize Roles" roles="Administrator" url="~/Admin/Roles.aspx"/>

    </siteMapNode>

From my config:



    <roleManager enabled="true" defaultProvider="SqlRoleProvider">

SharePoint 201 VS 2010 WF: PersistenceException: The security validation for this page is invalid

  

Setup: Visual studio 2010 SharePoint 2010 Workflow with custom infopath task edit form, with file attachment control. If I attach a file to the infopath task edit form, I got the following error message, though the attachment is saved, but the next task is not created and the current task is not marked as completed either.

09/27/2010 15:34:31.18     w3wp.exe (0x2B88)                           0x2844    SharePoint Foundation             Workflow Infrastructure           88xr    Unexpected    WinWF Internal Error, terminating workflow Id# 04621f32-17d4-439a-883a-7566b96481bb     
09/27/2010 15:34:31.18     w3wp.exe (0x2B88)                           0x2844    SharePoint Foundation             Workflow Infrastructure           98d4    Unexpected    System.Workflow.Runtime.Hosting.Pers

Page/url level authorization in SharePoint 2010?

  

Hi,

Does SharePoint support authorization on page/url level? Can I allow user with certain permission/group to see a certain page/url and prevent others from accessing the same page/url?


Item Level Security Using Column Values

  

 

Has anyone successfully implemented item-level security in a SharePoint list using column values as the decision criteria? I realize this isn't out of the box functionality and would need to be custom coded.

 

For example, let's say that we have one document library that stores all of the HR documents about every employee in the company. One of the columns in the properties of the document stores which Office that employee reports to. There are HR staff that support each Office and should only have access to the files of employees who report to the same office that they do.

 

I know an option would be to create separate library or folder structures for each Office, but I'm curious if anyone has attempted to secure items or documents using properties instead.

 

Thanks.


Page level global variables --- *always* bad style?

  

Creating an interface that we'll use internally to view and modify contents of a database.  The page uses the Wizard Control and a dropdown list to determine which clients information to display in the Wizard.

Current, I have a page level variable like this:

public static String selectedclient;


In this way, I can easily preserve which client is selected from the dropdown list between postbacks.  As it is, the program works fine.  The functionality is fulfilled.  I just keep reading that such public static page level variables are a bad idea, and that it has something to do with multithreading.  However, I've yet to see a problem or have any issues.

I really want to do this program "right" (good style), as this finished product will be used for years.  Is it going to come back to haunt me in the future if I leave it like it is?  If I need to change it, what would be a good way to preserve the same functionality?

One thing I'm thinking is that, any place where I need the selectedclient information, I could just use ClientDDList.SelectedValue.ToString().  But before I go and replace every selectedclient with ClientDDL.SelectedValue.ToString(), I'd like some advice on this issue.


Thanks.


Sharepoint 2007 publishing site home page displays unknown file type security message

  

I am using sharepoint 2007 sp2, it has been workig fine for the past 8 months but since one of the developers installed .net 4.0 framework, every time we create a new sharepoit publishng site or extend and existing application the home url displays an "Unknown File Type" security warning message and asks users to download the file.  If i manually tupe in the full url http://www.mysite.com/pages/default.aspx it is displayed correctly. I have uninstalled .net 4 from the server but i still have the same  error. I have tried to replicate this error on a development server but sharepoitn works fine on that even with .net 4.0 installed.

Has anyone had the same issue ? I would appreciate  any suggestios or help with troubleshootig this issue.

 


Categories: 
ASP.NetWindows Application  .NET Framework  C#  VB.Net  ADO.Net  
Sql Server  SharePoint  Silverlight  Others  All   

Hall of Fame    Twitter   Terms of Service    Privacy Policy    Contact Us    Archives   Tell A Friend