Howdy, Stranger!
Categories
- All Categories
- 73 General
- 73 Announcements
- 66.6K Microsoft Dynamics NAV
- 18.7K NAV Three Tier
- 38.4K NAV/Navision Classic Client
- 3.6K Navision Attain
- 2.4K Navision Financials
- 115 Navision DOS
- 854 Navision e-Commerce
- 1K NAV Tips & Tricks
- 772 NAV Dutch speaking only
- 615 NAV Courses, Exams & Certification
- 2K Microsoft Dynamics-Other
- 1.5K Dynamics AX
- 310 Dynamics CRM
- 109 Dynamics GP
- 10 Dynamics SL
- 1.5K Other
- 993 SQL General
- 384 SQL Performance
- 34 SQL Tips & Tricks
- 34 Design Patterns (General & Best Practices)
- Architectural Patterns
- 10 Design Patterns
- 5 Implementation Patterns
- 53 3rd Party Products, Services & Events
- 1.7K General
- 1.1K General Chat
- 1.6K Website
- 79 Testing
- 1.2K Download section
- 23 How Tos section
- 260 Feedback
- 12 NAV TechDays 2013 Sessions
- 13 NAV TechDays 2012 Sessions
Role Level Security Determined by Windows Authentication
RBrown
Member Posts: 8
Hello All,
I am developing an application using Silverlight to provide some customized front ends for our NAV system. I'm having a few issues with getting security setup correctly. I have basically 2 user sets. I have users who should be able to look at information (that is, read only access) and users who can lookup information and change it. In that vein we've created a READ user and a MODIFY user.
The READ user has Read and Run Permissions on all of our pages. The MODIFY user currently has full permissions (if a user can modify records, they can also create and delete). The problem is that the READ user is still able to make changes. This leads me to believe that the Run Permission gives a user access to all of the methods exposed by NAV's web services. Is this the case? If it is, is there some other way to restrict permissions to just Read Only access? I originally gave my READ user only read access, and NAV returned a "you do not have permission to Run this page" error.
A related question, is there a way to query NAV for what permissions the role of the current logged in Windows user has? It would be ideal to disable the save, insert, delete, etc. buttons for users who do not have those rights in NAV. So far the only way I've found to do that is to attempt to perform a write action and then handle the "permission denied" error message that NAV returns. This isn't really an ideal situation.
Thanks,
Ryan Brown
I am developing an application using Silverlight to provide some customized front ends for our NAV system. I'm having a few issues with getting security setup correctly. I have basically 2 user sets. I have users who should be able to look at information (that is, read only access) and users who can lookup information and change it. In that vein we've created a READ user and a MODIFY user.
The READ user has Read and Run Permissions on all of our pages. The MODIFY user currently has full permissions (if a user can modify records, they can also create and delete). The problem is that the READ user is still able to make changes. This leads me to believe that the Run Permission gives a user access to all of the methods exposed by NAV's web services. Is this the case? If it is, is there some other way to restrict permissions to just Read Only access? I originally gave my READ user only read access, and NAV returned a "you do not have permission to Run this page" error.
A related question, is there a way to query NAV for what permissions the role of the current logged in Windows user has? It would be ideal to disable the save, insert, delete, etc. buttons for users who do not have those rights in NAV. So far the only way I've found to do that is to attempt to perform a write action and then handle the "permission denied" error message that NAV returns. This isn't really an ideal situation.
Thanks,
Ryan Brown
0
Comments
Record.READPERMISSION / Record.WRITEPERMISSION
Are there any good resources for how learning to do this? Are there some examples available online somewhere?
read more here: http://msdn.microsoft.com/en-us/library/dd338962.aspx