Com+ Security

[GliMax]

I've created an ActiveX DLL, placed it in COM+, created users and roles and setup permissions for the methods and the roles.

I've created users and groups on my w2k server. The groups I've pulled accross as users into my COM+ roles.

Now, given a username that exists in my w2k user group, and a method name(which exists in my DLL), I want to know if that user has permission to activate that method.

is this possible...is there a function I can call or do I need to write one???

Help !!!!

[Cakkie]

There's a library called the COM+ Admin library (from microsoft) which can check that. It works with comadmin catalogs, but is not so userfriendly (although, once you get the hang of it). Note that the use of this library puts quite a big load on both the client as the server machine, so if you use it, I would suggest you use it only once every time a program is run, and read the security settings for all the objects you need, rather than using it everytime you need to use a component. This library also allows you to make changes to the com+ application (if you have enough rights), but these will only be effective the next time the com+ application starts (which can take a long time on big systems).

Tom Cannaerts
[email protected]

Programming today is a race between software engineers striving to build bigger and better idot-proof programs, and the universe trying to produce bigger and better idiots. So far, the universe is winning -- Rich Cook