Access Control List in .NET Framework Written by Balaji
Access Control List in .NET Framework
Once you complete developing a web application, you need to secure it. This is when aspect of security comes into picture. There will be some portions of your application which need to be secured from users. Securing an application may need extra hardware to build complex multi-layer systems with firewalls, and also some highly secure features. Security enables you to provide access to a specified user after user is authenticated and authorized to access resources in your web application. The Access Control List is used in authorization process.
The basic concepts of security are Authentication, Authorization, Impersonation and Data or functional security. Authentication is process that enables to identify a user, so that only that user is provided access to resources. Authorization is process that enables to determine whether a particular user can be given access to resources that user requests. Impersonation is process that provides access to resources requested by a user under a different identity. Data or functional security is process of securing a system physically, updating operating system and using robust software.
Some elements of an operating system, Internet Information Server (IIS), and .NET Framework work in coordination to provide features required to execute security concepts mentioned above. For example, Windows 2000 uses its own list of user accounts for identifying and authenticating users. IIS identifies users based on information provided by Windows, when users access a web site. IIS after identification of users, passes this information to ASP.NET. Then user information is checked for authorization.
Understanding Custom Server Controls in ASP.NET Written by Balaji
Understanding Custom Server Controls in ASP.NET
ASP.NET offers many server controls for developers to create web applications. However, at some point of development time when developer does not get control they want, they can create a new server control. This new server control can be called ASP.NET Custom Server Controls or user control. The basic difference between a ASP.NET Custom Server Controls and a user control is that unlike a user control that does not appear in Toolbox, you can view a ASP.NET Custom Server Controls in Toolbox. ASP.NET Custom Server Controls have their own events such as Enter, Onclick, and Onmouseover.
ASP.NET Custom Server Controls are very handy tool to use in your web forms. User controls prove inefficient in advanced scenarios. ASP.NET Custom Server Controls are compiled code that makes them user friendly. You should write ASP.NET Custom Server Controls in code, thereby view it in visual designer with full properties and design-time features. You can create a ASP.NET Custom Server Controls by inheriting one of base control classes. These classes have all functionality that is needed for a server control. Therefore, you just have to modify some of programming aspects to suit your requirements.