tihsin Posted September 17, 2003 Posted September 17, 2003 Hi, Had seen this article on MSDN titled "the return of the rich client" ... which dicusses CAS with rich clients in perspective ... Does anyone know anything else on this topic ... http://msdn.microsoft.com/msdnmag/issues/02/06/rich/default.aspx I have a rich client - a windows form application - that i want to host on ther server ... and let the client run it from internet explorer ... like activeX controls used to work ... any ideas ? This article i have referred to says something ... but only about the security and not how to go about doing this ... Thanks, Ni h Quote
*Experts* Nerseus Posted September 17, 2003 *Experts* Posted September 17, 2003 Here's one article. I know that Chris Sells authored at least two related to security for downloadable apps. My company used the idea, but implemented it from scratch. Our idea was to download DLLs that contained forms but do it from a regular EXE, client side. The article you mentioned does mean modifying each user's security settings to allow the app more permissions or working within the permissions you have. For most robust data-driven apps, the security provided won't be enough. A custom downloader can take awhile to implement of course, since it's custom code, but can be highly dynamic. Ours, for instance, uses a loader that downloads the main EXE and can even update itself (the loader updates itself). The main EXE can then authenticate a user and analyze their permissions and download DLLs accordingly. -Nerseus Quote "I want to stand as close to the edge as I can without going over. Out on the edge you see all the kinds of things you can't see from the center." - Kurt Vonnegut
AlexCode Posted September 17, 2003 Posted September 17, 2003 I'm developing a app that uses this kind of thing too, I'm also making the user permissions like the Windows permissions, creating groups of users and each user can be in more than one group. Each goup have a set of permitions per Form and somethings show up some don't, some are enable some don't doing the same with the SQL DB. First I thought using the AD but not all clients of this product have a server/domain and want to use it on a simple network... so it works fine ! :) Like this I don't have any security issue but if your data runs all over the Internet I think you can implement a VPN and a DMZ. Like this, and with a good admin and a good Firewall config, you can have 99.9% shure that your data don't get messed aroung... Don't like VPN ... the only other way is SSL... Otherwize you income internet data can allways be sniffed (don't forget that Windows authentication allways sails on the net in PLAIN TEXT !) I don't know if that is it but... If not sorry! Anything else just ask... Quote Software bugs are impossible to detect by anybody except the end user.
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.