At 06:26 PM 10/24/2009, Michael J. Sinclair wrote:
One consideration for a server installation and having the CFG file
stored in a single location is that all users will be recognized with
the same name when using the (CVAL('NAME')) Function. An alternative
is to use the Functions (CVAL('NETUSER')), which captures the logged
in network user name, and/or (CVAL('COMPUTER')), which captures the
actual computer name.
Dr. Sinclair,
FWIW, R:BASE Configuration File (.CFG) settings cannot be modified
to use (CVAL('parameter')) function within the file itself.
Technically, a server installation setup using "-A" option has no
benefit to using the legacy "NAME" value in configuration (.CFG) file
for any security or conditional parameters, etc., in your application.
It is strongly recommended to use network specific R:BASE functions,
such as (CVAL('NETUSER')), (CVAL('COMPUTER')), (GETVAL('GetIPAddress','n')),
or (GETVAL('GetMACAddr','nn')) to control the access or flow of your
application.
After validating a true user, using above options, you may further
control the access of your application menu item(s) with ENABLE
(True/False) or VISIBLE (True/False) options using the PROPERTY
command.
Hope that gives you some ideas to control your application security,
as well us update the legacy code!
Very Best R:egards,
Razzak.
