Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Security... one for the pros 1

Status
Not open for further replies.
lachesis

lachesis

Technical User
Sep 25, 2002
138
NZ
I have a number of forms with dual purpose:
- search/display functions
- edit/update functions

Edit functions are activated on the click of the "Edit" button. The thing is I want to limit the edit or update functions to "Admin" users or members of the "Admins" group.

How do I integrate VB code with the internal security features of Access?? Is there some general code "pattern" or template I can follow? Im an absolute beginner in the security area.

cheers
L.
 
Sort by date Sort by votes
Dan, that's the way my thinking was going, but won't the VBA code in the After Update, Click, etc. events run anyway?... up to the point where Update or Append SQL statements need to alter table data, then a form error msg apprears?

I actually want to warn Users at the "click" on Edit button stage that they do not have update/change/edit rights. Can I access User-level security rights thru VBA code??

cheers
 
Upvote 0 Downvote
The function below returns True if UserName is in the GroupName group and False if not:

Function fUserIsInGroup(UserName, Optional GroupName = "Admins") As Boolean
Dim wks As DAO.Workspace
Dim usr As User

On Error Resume Next
Set wks = DBEngine.Workspaces(0)
Set usr = wks.Groups(GroupName).Users(UserName)
fUserIsInGroup = (Err.Number = 0)
End Function

If you don't pass the GroupName argument it is assumed to be Admins.
You need the reference to DAO to run the function.

Usage:

If fUserIsInGroup(CurrentUser) Then
'user currently logged on is in the Admins group
Else
'user is NOT Admin
End If

Good luck


[pipe]
Daniel Vlas
Systems Consultant

 
Upvote 0 Downvote
Cheers Dan.

I note that the GroupName argument would default to "Admins" if not supplied.

How would I account for "SuperUsers", who have some admin rights including the ability to edit, in the above function??

I'm going for a three-tier group security strategy:
Admins (all rights)
SuperUsers (read/write/edit OK, no administer rights)
Users (no administer/edit rights)

L.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

TomSalvato
  • Locked
  • Question
Getting the Monday date from a week number 1
Replies
2
Views
819
TomSalvato
TomSalvato
TinaS
  • Locked
  • Question
Quick one I think - question about Properties window in Form Design view
Replies
1
Views
348
dhookom
dhookom
TrekBiker
  • Locked
  • Question
This is the source query for what 1
Replies
12
Views
619
dhookom
dhookom
TechieJr
  • Locked
  • Question
Filtering for null or empty field
Replies
8
Views
1K
dhookom
dhookom
BallunarCrew
  • Locked
  • Question
Looking for a color chart 1
Replies
2
Views
307
BallunarCrew
BallunarCrew

Part and Inventory Search

Sponsor

Back
Top