Edit permissions

[J Williams]

If an individual searches for a record and the records are displayed. Next the person clicks on the link that takes him to the individual form.

Is it possible to update a record by clicking on the update button and have a window pop up asking you for username and password. Then checks the database to see if that password and Username equal that ID, before allowing the user to update that record?

Your help is greatly appreciated.

[John]

Hi J,

Yes, what you want to do can be done. Example B7 on the aspdb.com examples page shows one way you might have a userid/pw screen before going on. You can "hook into" the UPDATE button (as you're requesting) by looking at the ASPdbClick parameter that's passed on the URL. You'll see that "aspDBClick_unitno=update" is there when update is clicked.

You simply need to check if Request("aspDBClick_unitno&#34 = "update" and if so, and if the userid/pw hasn't been checked yet (use a session variable), then present a login screen. If it's ok, then go ahead and show the update form.

Hope this steers you in the right direction. Take care,
John


On 2/24/99 11:57:27 PM, J Williams wrote:
> If an individual searches for a record and the records are displayed. Next
> the person clicks on the link that takes him to the individual form.

Is
> it possible to update a record by clicking on the update button and have a
> window pop up asking you for username and password. Then checks the
> database to see if that password and Username equal that ID, before
> allowing the user to update that record?

Your help is greatly appreciated.

[J Williams]

John,

What it possible to get some sample code from you?



On 2/26/99 3:35:06 AM, John wrote:
> Hi J,

Yes, what you want to do can be done. Example B7 on the aspdb.com
> examples page shows one way you might have a userid/pw screen before going
> on. You can "hook into" the UPDATE button (as you're
> requesting) by looking at the ASPdbClick parameter that's passed on the
> URL. You'll see that "aspDBClick_unitno=update" is there when
> update is clicked.

You simply need to check if
> Request("aspDBClick_unitno&#34 = "update" and if so, and if
> the userid/pw hasn't been checked yet (use a session variable), then
> present a login screen. If it's ok, then go ahead and show the update
> form.

Hope this steers you in the right direction. Take
> care,
John


On 2/24/99 11:57:27 PM, J Williams wrote:
> If an
> individual searches for a record and the records are displayed. Next
>
> the person clicks on the link that takes him to the individual form.

Is
>
> it possible to update a record by clicking on the update button and
> have a
> window pop up asking you for username and password. Then checks
> the
> database to see if that password and Username equal that ID, before
>
> allowing the user to update that record?

Your help is greatly
> appreciated.

[J Williams]

John,

One more question. When that individual clicks on update for a specific record will the password allow only him/her to update that record and not someone else who may have access to other records on the database.

Each person should only be able to update their own data stored in the database.