Question:
I am looking for a easy way to implement security in a VB4 application with multiple users (100+). I would like to be able to enable/disable controls at login based on the users predefined security level. Each user would have an individual (and perhaps distinct) access level. The assigned levels could be administered and tracked thru a separate database table.
Answer:
The best way to do this (in my opinion) is to assign each action in your application some sort of ID. Then, have your security people or designers go through and come up with “privilege levels”. Then, once the user is logged in, each function queries the database to see if the user can perform that function based on his/her level. The security system checks a table to see if there is a row matching the user level and the function code. If so, the user can do it, otherwise he/she can’t.