Methods for ensuring security between users in multi-user applications
Posted
by Emilio
on Stack Overflow
See other posts from Stack Overflow
or by Emilio
Published on 2010-06-07T01:29:51Z
Indexed on
2010/06/07
1:32 UTC
Read the original article
Hit count: 364
I'm writing a multiuser application (.NET - C#) in which each user's data is separated from the others and there is no data that's common between users. It's critical to ensure that no user has access to another user's data.
What are some approaches for implementing security at the database level and/or in the application architecture to to accomplish this? For example (and this is totally made up - I'm not suggesting it's a good or bad approach) including a userID column in all data tables might be an approach.
I'm developing the app in C# (asp.net) and SQL Server 2008. I'm looking for options that are are either native in the tools I'm using or general patterns.
© Stack Overflow or respective owner