Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.6K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 295 Dynamics CRM
- 109 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 993 SQL General
- 384 SQL Performance
- 34 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 259 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
Protect data from change
nvg
Member Posts: 25
Hi all,
I have a situation here. I want to check that the NAV user is not changing the computer system date when posting some special entries. For some special real-time recording, I have to check with the System date and verify that the date is correct (and not backdated).
For this I designed a solution in which I use a NAV table (Sometable) and keep the System date in "LastDate" [DATE] field upon login. Then when the posting is done, I test the entry to make sure that the system date is valid and matching the value in the table. Actually I check that like this:
Every day, when the users log-in to NAV, the system over-writes the value with the latest System Date.
Now the problem is that I also want that no user can change the value saved in that special table by running a process-only report. Currently the user can trick my system by making a Process-only report like this one and programatically changing the stored value in the table to any backdate.
What can I do to protect my value in the table from indirect changes like this? I considered requesting a NAV license to block MODIFY permission, but in that case, even I would not be able to update the Date value upon login. The users I am taking about here have programming permissions in the database.
Please advice.
I have a situation here. I want to check that the NAV user is not changing the computer system date when posting some special entries. For some special real-time recording, I have to check with the System date and verify that the date is correct (and not backdated).
For this I designed a solution in which I use a NAV table (Sometable) and keep the System date in "LastDate" [DATE] field upon login. Then when the posting is done, I test the entry to make sure that the system date is valid and matching the value in the table. Actually I check that like this:
IF "Posting Date" < Sometable.LastDate THEN
ERROR('Postings cannot be done in backdate.');
Every day, when the users log-in to NAV, the system over-writes the value with the latest System Date.
Now the problem is that I also want that no user can change the value saved in that special table by running a process-only report. Currently the user can trick my system by making a Process-only report like this one and programatically changing the stored value in the table to any backdate.
[b]SomeTable - OnAfterGetRecord()[/b] LastDate := DMY2DATE(01,01,2009); MODIFY;
What can I do to protect my value in the table from indirect changes like this? I considered requesting a NAV license to block MODIFY permission, but in that case, even I would not be able to update the Date value upon login. The users I am taking about here have programming permissions in the database.
Please advice.
0
Comments
if "posting date" < today then error(' [-X ' );
"Never memorize what you can easily find in a book".....Or Mibuso
My Blog
I could not use the "TODAY" function because, if you have sensed the background, the users are very smart.
They will goto the Control Panel of Windows and change the system date. Then NAV's TODAY function will return whatever is the changed system date.
To counter this threat, I made the plann to record the last login date into a table and then check if someone is trying to do tricks. If the value in the table is more than the System date, then show an error during login.
For your information, the clients are using NATIVE NAV DB.
2. manage permissions of the users, but if i'm correct, they can do everything, so they can also write code to avoid this and/or change permissions as they want...in this case, i think there's no solutions...
"Never memorize what you can easily find in a book".....Or Mibuso
My Blog