[AccessD] Office API's

Gustav Brock Gustav at cactus.dk
Tue Dec 14 08:36:41 CST 2010 

Thanks Lambert, that explains.

/gustav


>>> Lambert.Heenan at chartisinsurance.com 14-12-2010 15:25 >>>
In actual fact the methods that I have put together that use that authentication code will allow any other user to enter their own ID and password on someone else's computer.  The fact that their ID is different that the one that started the current session is detected, and code can then take the appropriate action.

So my use of the term "Current Windows Session" was a bit misleading.

Lambert

-----Original Message-----
From: accessd-bounces at databaseadvisors.com [mailto:accessd-bounces at databaseadvisors.com] On Behalf Of Gustav Brock
Sent: Tuesday, December 14, 2010 8:21 AM
To: accessd at databaseadvisors.com 
Subject: Re: [AccessD] Office API's

Hi John

OK, that's authentication in general and I understand your purpose. 

My point is that Lambert spoke about the user of the _current_ Windows session, not "someone" sitting at the keyboard.

/gustav


>>> jwcolby at colbyconsulting.com 14-12-2010 14:00 >>>
Gustav,

My presentation level security depends on a user logging in as their self so that they can have access to specific things within the system.  There are cases where a user calls a supervisor over to do something that requires privileges.  The supervisor logs in as their user and performs whatever action is necessary and then logs back out.  The normal user logs back in.  etc.

Just because a person sits down in a chair and types on the keyboard does not mean that person is authorized to do something.

John W. Colby
www.ColbyConsulting.com 

On 12/14/2010 3:04 AM, Gustav Brock wrote:
> But Lambert:
>
>> One API that took me so long to find was one that would provide 
>> Windows Authentication. In other words require the user to enter the 
>> name and password that was used to start the current Windows session: 
>> to prove that they are who fOsUsername says they are.
>
> why would you need to do this? The user has authenticated himself/herself when logging successfully in to the current Windows session.
>
> /gustav

More information about the AccessD mailing list