Methods for ensuring security between users in multi-user applications

Posted by Emilio on Stack Overflow See other posts from Stack Overflow or by Emilio
Published on 2010-06-07T01:29:51Z Indexed on 2010/06/07 1:32 UTC
Read the original article Hit count: 364

Filed under:
|
|
|
|

I'm writing a multiuser application (.NET - C#) in which each user's data is separated from the others and there is no data that's common between users. It's critical to ensure that no user has access to another user's data.

What are some approaches for implementing security at the database level and/or in the application architecture to to accomplish this? For example (and this is totally made up - I'm not suggesting it's a good or bad approach) including a userID column in all data tables might be an approach.

I'm developing the app in C# (asp.net) and SQL Server 2008. I'm looking for options that are are either native in the tools I'm using or general patterns.

© Stack Overflow or respective owner

Related posts about c#

Related posts about sql-server