davidmadden - Developer IT

Controlling access to site folders if you cannot user Roles

- by DavidMadden

I find myself on an assignment where I could not use System.Web.Security.Roles. That meant that I could not use Visual Studio's Website | ASP.NET Configuration. I had to go about things another way. The clues were in these two websites:http://www.csharpaspnetarticles.com/2009/02/formsauthentication-ticket-roles-aspnet.htmlhttp://msdn.microsoft.com/en-us/library/b6x6shw7(v=VS.71).aspxhttp://msdn.microsoft.com/en-us/library/b6x6shw7(v=VS.71).aspxYou can set in your web.config the restrictions on folders without having to set the restrictions in multiple folders through their own web.config file. In my main default.aspx file in my protected subfolder off my main site, I did the following code due to MultiFormAuthentication (MFA) providing the security to this point: string role = string.Empty; if (((Login)Session["Login"]).UserLevelID > 3) { role = "PowerUser"; } else { role = "Newbie"; } FormsAuthenticationTicket ticket = new FormsAuthenticationTicket( 1, ((Login)Session["Login"]).UserID, DateTime.Now, DateTime.Now.AddMinutes(20), false, role, FormsAuthentication.FormsCookiePath); string hashCookies = FormsAuthentication.Encrypt(ticket); HttpCookie cookie = new HttpCookie(FormsAuthentication.FormsCookieName, hashCookies); Response.Cookies.Add(cookie); This all gave me the ability to change restrictions on folders without having to restart the website or having to do any hard coding.

Read the article

Comments in code

- by DavidMadden

It is a good practice to leave comments in your code. Knowing what the hell you were thinking or later intending can be salvation for yourself or the poor soul coming behind you. Comments can leave clues to why you chose one approach over the other. Perhaps staged re-engineering dictated that coding practices vary.One thing that should not be left in code as comments is old code. There are many free tools that left you version your code. Subversion is a great tool when used with TortoiseSVN. Leaving commented code scattered all over will cause you to second guess yourself, all distraction to the real code, and is just bad practice.If you have a versioning solution, take time to go back through your code and clean things up. You may find that you can remove lines and leave real comments that are far more knowledgeable than having to remember why you commented out the old code in the first place.

Read the article

Adding JavaScript to your code dependent upon conditions

- by DavidMadden

You might be in an environment where you code is source controlled and where you might have build options to different environments. I recently encountered this where the same code, built on different configurations, would have the website at a different URL. If you are working with ASP.NET as I am you will have to do something a bit crazy but worth while. If someone has a more efficient solution please share. Here is what I came up with to make sure the client side script was placed into the HEAD element for the Google Analytics script. GA wants to be the last in the HEAD element so if you are doing others in the Page_Load then you should do theirs last. The settings object below is an instance of a class that holds information I collection. You could read from different sources depending on where you stored your unique ID for Google Analytics. *** This has been formatted to fit this screen. *** if (!IsPostBack) { if (settings.GoogleAnalyticsID != null || settings.GoogleAnalyticsID != string.Empty) { string str = @"//<!CDATA[ var _gaq = _gaq || []; _gaq.push(['_setAccount', '" + settings.GoogleAnalyticsID + "']); _gaq.push(['_trackPageview']); (function () { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);})();"; System.Web.UI.HtmlControls.HtmlGenericControl si = new System.Web.UI.HtmlControls.HtmlGenericControl(); si.TagName = "script"; si.Attributes.Add("type", @"text/javascript"); si.InnerHtml = sb.ToString(); this.Page.Header.Controls.Add(si); } } The code above will prevent the code from executing if it is a PostBack and then if the ID was not able to be read or something caused the settings to be lost by accident. If you have larger function to declare, you can use a StringBuilder to separate the lines. This is the most compact I wished to go and manage readability.

Read the article

Google Analytics

- by DavidMadden

My first post. Working with Google Analytics (GA). What an incredible tool this is for those that are wanting to know about their site traffic. GA allows the user to drill down to the screen size of any mobile sources that came in contact with his site. The user is even able to know region demographics of visitors and the types of browsers and languages being used. This is a great tool to help determine your target audience and what direction of growth one may be needing to take.GA has Real-Time currently in beta but it already allows the user to see some information. I can already detect that I am viewing my site from Louisville, KY and what page of my site is being accessed. I highly recommend using GA for the sheer plethora of data available.

Read the article

Old school trick that I forgot

- by DavidMadden

If you have to support some older Winforms you might like to remember this. When opening a MessageBox to display that the user entered incorrect information, if you are doing so from a dialog, catch the DialogResult of the MessageBox and then set this.DialogResult = DialogResult.None; to prevent the dialog from closing if you want the user to try again. Otherwise, it will close the dialog box and return to the section of code that called it.Note: You do not have to catch the DialogResult from the MessageBox. You can still set this after the return from the call to the MessageBox. Just make sure to do either but exiting the body of the dialog itself.

Developer IT