QwikQuote Security Manual

 

 

(QunYu Software & Service)

 

 

 

 

 

 

 

 

 

 

 

 

 

 

August 05, 2002

 


QwikQuote Security Manual.............................................................................................. 3

1. General Concept.......................................................................................................... 3

2. Getting Started............................................................................................................. 4

3. QwikQuote Security Schema..................................................................................... 20

Control Point................................................................................................................. 21

Access right................................................................................................................... 21

User............................................................................................................................... 21

ACL (Access Control List)........................................................................................... 21

Module........................................................................................................................... 22

Role............................................................................................................................... 22

Group............................................................................................................................ 22

Function......................................................................................................................... 23

Customize...................................................................................................................... 23

4. Security Mode............................................................................................................ 24

None Security Mode...................................................................................................... 24

Simple Security Mode................................................................................................... 24

Full Security Mode........................................................................................................ 26

Easy Security Mode...................................................................................................... 27

5. GUI Characters of Full Security Mode...................................................................... 28

Root Node for Group and Role.................................................................................... 28

ACL for Group, Role, and User................................................................................... 28

Fine Control at each ACL............................................................................................ 29

Userís Property for Group and Role........................................................................... 30

Groupís Property for Group and Role........................................................................ 31

Role for Organize ACL................................................................................................ 33

Userís rights verse Related ACL.................................................................................. 34

6. Calling Interfaces....................................................................................................... 35

Interface for QQSecurity............................................................................................. 35

Interface for QQSecurityUser...................................................................................... 36

7. What to do next.......................................................................................................... 38

 


QwikQuote Security Manual

1.  General Concept

 

The QwikQuote Security Feature in the quoting software and invoice software system is an Active X component in DLL/OCX format. It uses ActiveX protocol to provide an easy use module for program languages supporting ActiveX interfaces. It is able to meet a wide variety of application environments by multi-running modules in constructing a quotation software system, yet keeping simple and intuitive interfaces for both users and applications developers.

It has Multi-Security modes (None, Simple, Full, and Easy) in the quotation software system that address different userís environments and business requirement in your sales quotes processes. And the switch among those modes is extremely easy in manage your quote software system Ė only a mouse click is needed.

Ease of use by intuitive and Explore style userís interfaces in the QwikQuote Security Module of your quoting software system. The learning curve for QwikQuote Security System is minimal for they can apply their experience accumulated with the use of Windows Explore and Internet Explore.

Ease of use for developer. With only one calling to add security feature to your application in your quoting software system Ė an easy value adding approach for important applications not only for quoting software and invoicing software, but applicable to any application control fields.


2.  Getting Started

 

The following steps show you how to get start with QwikQuote Security system after the software successfully installed in your quoting software and invoicing software system without get to know all details later in this document.

1.            The basic idea of security in QwikQuote is a userís right over function control points in your quoting software. That is to say: a function in your quoting software under security control only allows those users who have the right to execute that function. The rights of a user or entity in the QwikQuote Security system over different control points in your quoting software and invoicing software system can be granted or revoked by users who have the Security system user privilege and the predefined system user QQAdmin in your quoting software and invoicing software system.

2.            Another important concept in QwikQuote Security Module in your quoting software and invoicing software system is the Security mode that is designed to meet the different security requirement, yet to keep simplicity of usage and management. At QwikQuote the quoting software setup, the security mode is in undefined stats, and user will not feel any difference with QwikQuote as before the security system is in the release. If you want to use security feature, the fist step is to select the right security mode that meets your security requirement in your quoting software through the Security Manager.

3.            You can start Security Manager either from Windows Start Menu, QwikQuote 6 program group, QwikQuote Security Manager as the followings,


or directly run the program QQSecurityMGR.exe from the Windows explore by double click onas :

or start from Run dialog with the proper path to the application as
C:\Program Files\QQ6\QQSecurityMGR.exe


Or from the DOS command Windows as:


When the QwikQuote Security Manage program start up the very 1st time in your quoting software system, it is default to be in No Security Mode - as shown in the QwikQuote Security Manager window title.

Since this is the first time login in the quote software setup and there is no security mode explicitly selected yet in your quote software and invoice software a, there is no login security check needed. You directly get into the QwikQuote Security Manager of your quote software setup and it has the following clean and powerful outlook.

4.            The general out look of the Security Manager is a Windows Explore style window. At the left side of the window, there are major objects in the QwikQuote Security system, similar to the directory tree structure of the Windows Explore. The right side is more detailed information and the properties of the selected objects in the left side. Some dialog windows will show up at the right time to help complete the management tasks, such as user management and rights management tasks. This explore style is familiar to most of Windows computer users and will make the security management tasks in your quoting software more enjoyable.

5.            Here are 3 things you should do the first time if you want to use the security feature. They are:
a: Set Security mode,
b: Add user, and
c: Set rights over control points.

6.            Select Security mode that meet your security requirement in you quoting software system by click the security mode icon on the toolbar, you brings up the dialog window that is for changing security mode in your quotation software system, such as the screenshot shown below:


There are 4 security modes defined in the release. As you move the mouse over each security mode, the help information for that security mode shows you the most important characters of that mode in the lower information panel automatically. Please read the help information carefully, and make up a good plan what security you are going to use in your quoting software system.

In this example, we chose simple security mode as:


Please notice that the will be enabled as your selection is valid.

For this sample, letís choose Simple Security Mode and push OK button.

7.            When the QwikQuote installed, there is a predefined system Administrator or System user called QQAdmin.
The password for QQAdmin is QwikQuote with case sensitive.

The name of QQAdmin cannot be changed in the QwikQuote quoting software system, but the password can be changed at your will. And we suggest you to change this password to what you want.

The default security manager administrator user the QQAdmin cannot be removed from the QwikQuote security system. The rest of any user in the quote software can be removed in case you need to and you have Security Administrator rights to do so.

To add a new user in the security system, click at the root node Users at the left side tree panel, and then you double click any empty space at the user panel at the right of the window or right-mouse click at any empty place of the right side of the display window and then choose the ďNew User ÖĒ command from the popup menu, such as the screenshot shown below:
This will open the New User dialog window this will allow you to add new user to your quoting software system.


8.            Set the rights over control points for default user, individual user, group, and role depending on the mode you selected in you quotation software system. The choices you have is dependent on the Security mode you choose and in each case that will end up a control point list with each point set you your choices, such as screenshot shown below:

9.            At the very 1st time run QwikQuote Security Manager there is no login and any one logged in will be act as the QwikQuote Security system default manager QQAdmin and it to have all rights over any tasks in the QwikQuote Security module in your quote software system.
Start from the 2nd time to run QwikQuote Security Manager the login will need system userís privilege to login to the Security Manager.
In the simple mode, there is only one pre-defined system user with login name/Password as: QQAdmin/QwikQuote at the 1st QwikQuote installation)
It is following the popular Explore style, and the basic operation is to select object from left panel and do something at the right panel if it is available in the quoting software and invoice software system.

10.        To work on an object in the QwikQuote Security manager by select the tree node item in the left panel first, then right click anywhere at the right panel to bring up the corresponding popup menu and then choose the corresponding action to execute in the quoting software system, such as the screenshot demonstrated below:

11.        Select New UserÖ command to add new user.
You should see the new user dialog, for example, and add a new user SFan with the Password SFan such as the screenshot shown below.
Note: The Expire Date is rather important, and the rest of fields is up to you:


12.        Click OK button to add SFan to the system as a normal user.

13.        Add one more User to the system, say SFan 2/SFan 2, and then you should see:

14.        At any time you want to change the property of any user in your quote software system, you can do it by double-click at that user on left or right panel. It will bring you the same dialog, but you are not able to change Login Name and Password anymore. Such as:

Note: The Login Name and Password will be enabled and allow you to change after you logon as QwikQuote Security system Administrator user in your quoting software system the next time you logon.

15.        The security setting of individual control point is organized into 8 modules. Every module has different number of places/functions to control. When expand them, it looks as screenshot image shown below:

Note: The checked means Enable, and the Unchecked means Disabled.

16.        To facilitate the enable and disable action over a group of control points, the parent checkbox can control its children control point as a group. For example, letís disable all of Price List control points by uncheck the parent checkbox all the children control points are disabled with this parent checkbox is unchecked by only with one mouse-click.

Note: The changes will take effect by click the Apply button.

17.        If you exit Security Manager and go back to use QwikQuote, nothing should happen, for we did not set the Security Mode yet. To set up security mode, use the menu command as:

or the Setup Security Mode command button on the toolbar as below:

18.        In the Security mode window, pleas select Simple Security Mode as:
:

19.        When the OK button enabled, click it will bring up confirm message as:


20.        After you click the Yes button, the QwikQuote will run in the Simple Security mode in your quoting software system when the next time your run QwikQuote. Beware that, from then on, you need system user privilege to login to the QwikQuote Security manager of your quote software setup. For the Simple Security Mode, it is QQAdmin/QwikQuote until you change the password for the security of your quote software system.

21.        Exit Security Manager, and try to start QwikQuote or close the running QwikQuote in the quotation software and then re-start it again, you will meet the QwikQuote Login dialog as:

22.        If I login as SFan, then the Price List view should looked as:

Please notice that quite a few command buttons and menu items has been disabled in the quote software. In anther words, they are under security control now.

23.        It is clear that, not everything in the quotation software is controlled, but rather important ones. Right now, there are 268 control points or items. (Most of control point corresponding to one control item, but some control point may actually control 3 items Ė Menu, button, checkbox, option box Ö).

24.        If I log in as QQAdmin/QwikQuote into the quote software system, then


Then I will get all functions in the quote software enabled:
Notice that, QQAdmin always has all rights. So be care for its pass word if you want to keep security of your quote software and invoice software system really secure.

25.        You can change you password from Security manager as screenshots below:

and the following dialog let you input your new password.

26.        If you go to set back the security mode back to none, there will be no security check to QwikQuote applications in your quote software system, but the Security Manager still need system userís privilege to login. In another word, normal QwikQuote user is not able to login to the QwikQuote security manager of your quoting software and invoice software system.

 

How long have you been spend to learn and use QwikQuote Security? (Simple Security Mode Only).

 

 


3.  QwikQuote Security Schema

 

The basic entities in the QwikQuote Security module of the quote software and invoice software
are built on Control Point, User, and access right.

The Module, ACL (Access Control List), System Admin are used to make them well organized.

The function group, User group, role are use to construct hierarchical security structure.

The database entities of Security Schema are as:

To meet different security requirement in different working environments and make QwikQuote Security system easy of usage, there are 4 security modes are designed in the quote software and invoice software system, and different security mode could be deployed through QwikQuote Security Manager.

 

 

Control Point

The basic concept of QwikQuote Security Schema in the quote software system can be understood as Control Points and its access rights granted to its users.

A control point is an important functionality or feature in QwikQuote application and that functionality can apply effective control of its accessibility at run time of the quoting software.

In most of cases, a control point is corresponding to an object in QwikQuote, such as a menu command, a command button, a checkbox Ö. But a control point can control more than one object in QwikQuote application of your quoting software system. For example, Print control point in the quote software system can control 2 menu commands and 2 command buttons in different views and Save PDF control point can control a menu command and a command button in different windows of the quoting software.

At this release, we defined 268 control points. They are used to control all aspects of important QwikQuote functions in the quoting software system. To help understand them and convenient the settings management, they are organized into 8 modules that are corresponding to major QwikQuote applications and features in the quoting software and invoice software package.

 

 

Access right

The assess rights of a control point is the availability of a user who is using QwikQuote applications in the quoting software system.

For a control point, a user can use its function if he/she is granted the right of it

For a control point, a user cannot use its function if he/she is not granted the right.

 

User

User is the person who using QwikQuote application.

The default system user QQAdmin in the quoting software is a predefined user who has all rights over all QwikQuote applications and QwikQuote Security Manager. When the QwikQuote Security system is set up at the installation and configuration of the quote software package the password of QQAdmin is preloaded as QwikQuote with case sensitive.

In Simple Security mode, all users share the same security settings setup by QQAdmin.

In Full Security mode, a userís right is the sum of all ACL the user is involved.

 

 

ACL (Access Control List)

ACL is the sum of rights of an entity (User, Role, or Group) over all control points in the QwikQuote Security system of the quoting software package.

In the Simple Security mode, all users share the same rights of a system ACL setup by QQAdmin. But QQAdmin itself has all rights over QwikQuote applications and Security Manager.

In the Full Security mode, every entity (User, Role, or Group) may have its own ACL setup by QwikQuote Security system administrators. A userís full rights are the sum up of all ACLs the user is involved.

In the Easy Security mode, the rights settings are the same as in Simple Security mode but without user login check involved. This is a simple and effective approach to customize the quote software package to your business requirement.

 

Module

Module is used in QwikQuote Security system to help organize control points.

A module can be an application, such as QwikQuote Report module, or QB Converter module. It can be a part of application, such as Price List module or Options module.

At this release, over 268 control points in the quoting software system are organized into 10 modules. They are General, Price List, Catalog, Quote, Layout, Options, Reporter, QB Converter, Configurator and Contact Manager modules.

 

 

Role

Role is used to help organize control point settings in the quoting software package. A role represents a group of settings to all control points. They are reflected in the ACL of the role.

Every role in the quoting software system must have its own ACL. In this way, it is more convenient to grant functionality to individual user or group in the quoting software system.

A role might be or assigned to or owned by a group or a user, but not by another role in the quoting software system.

Role will only be used in Full Security mode. In None Security mode, Easy Security mode, and Simple Security mode, all role settings are not functional, though they are kept in the Security system of the quoting software package.

 

Group

Role is used to help organize users in the quoting software system. A group can include a number of users and other groups Ė but not recursive back to itself.

A group might have its own ACL, or own a number of roles, to get its sum up rights over control points of the quoting software and invoice software system..

A group might have one, and only one if it has, parent Group. But a group might have none, one, or more sub groups. In this way, groups can organized like a family tree, to meet the complex security requirement of your quoting software and invoice software system.

A user in a group can have a groupís granted rights over all control points of the quote software package, and all the ancestors of rights, but not the rights of its sibling group or any farther relatives. This is pretty the same as property in a family.

Group will only be used in Full Security mode. In None Security mode, Easy Security Mode and Simple Security mode, all role settings are not functional, though they are kept in the Security system of your quote software and invoice software setup.

 

 

Function

Function is used to help organize control points in a module of the quotation software system into function groups. The name of the function describes the function of the control point group. The related control points are organized in to one group, and displayed as a level under the module in the tree view in the security manager. All the control pointers in the function group are displayed under the function group, so as to easy check and make selections to meet the security requirement of your quotation software system.

At this release, there are 18 functions defined in the quote software package, including:
Menu, Price, Print, Email, Bundle, Layout, Contact, Catalog, Price List, Accounting, Quote/Order, PDF Settings, File Location, Exchange Rate, Confidential Field in Price List, Confidential Field in Quote, Confidential Field in Layout, and Confidential Field in Reporter.

Depending on the different usage of modules, the same function might occur in different modules of the quotation software package. And accordingly, some control pointers under that function might be occurred in different modules in the quotation software package, too.

 

 

Customize

Customize is used, similar to function, to mark the control points as a customized feature of special client (user of the quotation software setup). The control points under the customization name are only meaningful to their business, and normally are available by a customized installation package.

The key to control the customized function and control points is through the settings in registry at the following entries:
[HKEY_LOCAL_MACHINE\SOFTWARE\QwikQuote]
"CustomizedFeature"=""
"CustomizedFeatureKey"=""
the actual value of those entries are pre-defined constants, and set at the time of installation of the customized setup and update packages..

 

 


4.  Security Mode

To meet different userís environments and requirements of security in their quoting software and invoice software system, from small business at your home office to multi-national worldwide class corporation with hundreds of salespersons all over the USA and other countries, we have defined 4 Security Modes in the quote software system. They are None Security Mode, Simple Security Mode, Full security Mode, and Easy Security Mode.

Depending on your working environments, you can easily swap between those modes by select the one suitable to your working environment and security requirement you want from the QwikQuote Security Mode Dialog in the QwikQuote Security Manager of your quote software system. But you have to have QwikQuote Security system userís privilege to be able to change security mode if the security feature is activated in your quote software setup.

There are other security modes under consideration in the future releases of the quoting software package, such as Fixed Function mode that only allow a preset of functionalities pre-defined by the security system manager to be executed with out login and user name. The only control person is the security manager in the Fixed Function mode. In a small business and under controlled office working environment, this might a good idea to save the login every time. This mode might be released in the next release of the quoting software package.

 

 

None Security Mode

This is the default security mode when you first run QwikQuote. Functionally speaking, it is corresponding to the QwikQuote before Security feature available in the quote software package. But in fact, you might have simple or full security settings already defined there in your quoting software system, waiting to be activated at the moment you want to use it..

In the None Security mode of the quoting software,

         All the functions are available to every QwikQuote user.

         All the Security settings are not functional.

         There is no login to use QwikQuote Ė QwikQuote user experiences are the same as before the security feature is available in the quote software package.

This is the security mode recommended for home office, and/or small business scenario, where working environment is secured and the efficiency and simplicity are the main consideration in the quotation software and invoice software setup.

Simple Security Mode

This is a security mode designed for easy of usage as the main goal, yet offers complete control over all the important functionalities in QwikQuote the quoting software and invoice software package. That is to say, the power and security control level is the same as full security mode, but the security management and the control over the control points are much simple.

Simple Security mode has to be selected and activated in the QwikQuote Security Mode Dialog so as to be active.to take effect on your quote software system. The prompt message will show you the major features of this mode to help you make the right decision for selecting this mode.

At any time, you can swap from other security mode in the quote software system (None Security mode, Full Security mode, and Easy security Mode) to and from Simple Security mode as long as you have QwikQuote Security system userís privilege.

In the Simple Security mode of the quote software system,

         There is only one Security Manager who has all rights - predefined as QQAdmin with pre loaded password as QwikQuote.

         All users share the same rights set up by Security Manager QQAdmin.

         No Group(s) and Role(s) will be effective in defining security schema.

         Login is required to use QwikQuote.

 

This is the security mode recommended for use in small and middle sized scenario, where the simplicity of Security Management is concerned in the quote software system.

For example, if you are interested for some settings not to be accidentally changed by some users in your company, choose this mode to only limit those controls to the ones under consideration is a good choice.

The concept of the Simple Security Mode in the quote software package is illustrated in the image below:

The key point in the above picture is there is only one ACL being defined by the Default Security Manager and that one is used by all users in the quote software system.

 

 

 

Full Security Mode

This is the security mode designed with a full fly of serious security scenario in the quoting software system. The power of security to meet the complex security requirement and the fine fitness on both side of security are under the consideration of this security mode.

In the case of multilevel security, divided security, and detailed security requirement are the main consideration, the Full Security mode is the good candidate of the choice.

At any time, you can swap from None Security mode, Easy Security Mode, and Simple Security mode to/from Full Security mode as long as you have QwikQuote Security system userís privilege in your quote software setup.

In the Full Security mode of the quoting software system:

         All system users can login to QwikQuote Security Manager to perform security tasks in your quote software system, such as user management and set up rights for individual user or group.

         Can use Group(s) and Role(s) in defining security schema.

         Every user, group, and role can have its own security settings reflected in its Access Control List (ACL). In other words, we can grand rights to individual entity in the QwikQuote Security system.

         Can set fine control method on each Control Point based on different functionality.

         Can preset the control choice or rights pattern on individual control point.

         Link OS user(s) to QwikQuote user(s) if the user has been added to the QwikQuote Security system.

         Login is required to use QwikQuote.

This is the security mode recommended for use in big corporate & companies scenario.

For example, if you have hundreds of sales forces and some sub divisions over other cities or countries, yet you need centralized control over the company as a whole, the Full Security mode is the natural choice in your quoting software system.

The make full advantage features of full security mode in the quote software package, a good plan is the key to the successfully implement this mode. It is important to have a clear picture about how to divide the functionalities in your company, and match it to the schema of Full Security mode. It is a big task to efficiently divide and organize them into groups and roles and finally come up the individual user who logon to run QwikQuote in your quote software system.

The key point in the above picture is multilevel and interleave among entities and control points in organizing the security environment in your quoting software setup to meet complex security requirement of your business environment.

 

 

Easy Security Mode

This is a mode much the same as the simple security mode.

In this mode, Administrator set the right for the rest of users by the default ACL as in the simple security mode of the quote software package.

But the key difference with the simple security mode is there is no user concept in this mode. Or put it another way, every one can be a user. The result of this mode is there is no login and no user management is needed Ė this makes the security management tasks much simple in your quote software system. The net result can be understood as a well customized functionality copy of QwikQuote.

This is a convenient way to set up QwikQuote right for your controlled environment in a small business or organization.

To make life easy, it uses the same ACL internal programmatically as the one in Simple Security mode of the quote software setup.

 

 

 


5.  GUI Characters of Full Security Mode

 

GUI for Full Security Mode in the quote software system is much the same as the Simple Security Mode

 

The major differences in this mode are necessary changes to implement concepts involved in Role, Group, individual ACL for each User, Role, and Group in the quote software package, fine control at the individual control point, and a tool to assist the manager to know how a userís final rights is constructed with the same way as the user login at the start of QwikQuote application in the quote software system.

 



Root Node for Group and Role

In the Full Security Mode of the quoting software system, the Group and Role are added to root node in the left panel of the QwikQuote Security Manager window. They are the parent node of Roles and Groups Ė similar as the User node for Users in the quote software system.

 

ACL for Group, Role, and User

In the Full Security Mode of the quoting software system, every Group, Role, and User might have its own ACL the rights over all control points of the quotation at the right panel of the QwikQuote Security Manager window, so that you can have fine access control based on each individual entity, such as the screenshot image shown below:

To make this powerful and flexible feature easy to use and neat to display, the ACL for each entry is automatically created when they get focus on the tree branch. This is an important feature of QwikQuote security system. This makes the management of large number of uses, groups, and roles an ease job in our quoting software package.

 

Fine Control at each ACL

In the Full Security Mode of the quoting software system each ACL can be act as a simple enable/disable style simple control Ė this is the way Simple and Easy control mode do, but might have more detailed fine control over each control point in the ACL, such as the screenshot image shown below:

When the selection of the fine control over individual ACL reduced to the Simple or Easy mode in the quoting software system, it will act as enable/disable style Ė with any rights of access to enabled verses no rights as disabled. In another word, if any detailed control behavior is enabled, then the control point in the quote software setup is handled as enabled Ė only all detailed control behaviors are disabled then the control point in the quote software setup is handled as enabled as disabled.

Userís Property for Group and Role

In the Full Security Mode of the quoting software system each User can have it own ACL, and can acquire access right through join group(s) or take Role(s) as shown below for Group

and for Role

In this case, the userís rights it the combination or sum up of all ACL the user has access rights in them.

In a complex situation of your quoting software system, the relationship among all ACL of a user might have may become rather complicated. In this case, the tool of ACL relation table in the quote software setup is to help administrator understand and take control of this situation.

Groupís Property for Group and Role

In the Full Security Mode of the quoting software system, by popup menu or double click at space in the group panel, the Group Management dialog will popup to let you create new group as shown below:.

Each Group User can have it own ACL, and can acquire access right through its parent group or take Role(s) as shown below.

and


Though its parent relationship, Groups can form a hierarchical structure like a family tree. This is an important character in a large cooperation where a leveled access rights is required in the quoting software and invoice system.

 

 



Role for Organize ACL

In the Full Security Mode of the quoting software system Role is used for help organizing ACL. You can create a new role by popup menu or double click at the space in the role panel.

There are three roles pre-defined and they are not able to be removed in the Full Security Mode of the quoting software system. They are QRLAdmin, QRLSupoer, and QRLUser Ė corresponding to the Administrator, Super User, and Normal User access control rights in the quoting software setup.

Userís rights verse Related ACL

(This feature will be available in next release.)

In a complex security situation, a userís rights is the combination of all ACL involved. It can be rather complex to trace the rights variation of a user.

The tool is to use a table listing all the ACL and the final right of the user under investigate. And also show how the user gets access to the ACL. In this manner, it will be easy to under the userís right and make adjustment accordingly.


6.  Calling Interfaces

The following information is for developer and 3rd party integrator who want to customize or expand the QwikQuote security module control points to whatever purposes they need. We will continue to improve and bug fix the Security module, but we do not commit or promise to any functions and feature that ensure those extend will work in the newer releases. They should refer to the new releases for changes and updates of the QwikQuote Security module corresponding to the QwikQuote released versions.

 

There are 2 components in the security system. ProgID for them are
QQSecurity.CSecurity
QQSecurityUser.CSecurityUser

they can be used to create object and then call the methods in them to accomplish required tasks.

Component QQSecurity is the main implement of the security system. It exposes 9 classes for all functionalities involved, from GUI to database interfaces.

Component QQSecurityUser is for developer to interface and customize the control point information meaningful to individual application. Application developer should follow the sample to organize the control points Ė as required by the control needs of the application. This can be organized in structured fashion of module/function-customize/control point, or as a flat of control points in a simple application environment.

In application, only one call to Security User object can get the right of the active user as CSecurityUser.GetRightsByUser().

The return of the rights is in a collection of information organized in Module/Control Point/Rights structure. In this way, it easy to expand to more complex control needs without breaking the interfaces.

It is the applications responsibility to implement control by using the information in the rights included in the collection.

Interface for QQSecurity

QQSecurity has the following properties and methods

Interface for QQSecurityUser

QQSecurityUser has the following properties and methods

 


7.  What to do next

The following points are the issues under consideration in future release.

  1. Add security control to quote Ė the data security
  2. Manual and help file for this security module.
  3. Tool for showing a userís rights verse ACL involved.
  4. Some function in the security manager, such as export security info.
  5. OCX release for easy uses in IDE.