SecurityLib 1.0

by

MarVic

 

User Guide

 

 

 

Table of contents:

1. Introduction.. 1

2. Main idea of system... 1

Rights. 1

Parameters. 2

Groups. 2

3. Using SecurityLib.. 2

Entering your ID and password. 2

Changing your password. 4

Viewing and changing rights and parameters. 15

4. Other.. 23

Other documents: 25

 

1. Introduction

 

So, here you are, new user of SecurityLib library, wondering why you have to read all this boring documentation.  For your convenience, I tried to make this document short, full, and simple to read for inexperienced user. If you want more detailed information about this system, refer to B³¹d! Nie okreœlono zak³adki.“SecurityLib Administrator Manual”.

In fact, to use this system, you really don't have to read all this, even if you have very limited knowledge about operating computers. I hope using this library is pretty intuitive and similar to other security systems, like Novell NetWare.

          

 

2. Main idea of system

The main reason this library was made was to provide methods to identify and autorisate users of other applications, which needs it. From your point of view, it's just your unique id name and password, which you enter in password dialog. After entering your correct password, which is called logging in, you have access to some, chosen by the administrator, parts of the program you're using. 

There are three kinds of data about you that library stores. First, it's information about your password and name. Second, it's your rights to access specific areas of application. Finally, third kind is so-called parameters.

 

Rights

You can have four basic rights to every sector of application: right to view data of that sector, add new data, modify existing data, and delete data.  Some of them may be irrelevant in specific context, for example if there is a screen only with prices of some items, you can only view and modify that data, because adding and deleting from list of items can be done other form. Each right composed from four basic rights has it's own unique name, and can be different for each user.

Use of each basic right is application specific - that is, your application programmer decides, what will be disallowed when you don't have modified right to some part of app. For more information about meaning of basic rights, see your program documentation.

 

Parameters

In contrast, parameters are not divided into basic ones, but into types:

·       Default - which may store 16 char string

·       Integer - which can store numbers from about -2,000,000,000 to about 2,000,000,000

·       Boolean - which stores only two values - true or false,

·       User defined parameter types - which are in fact little dialog windows presenting information stored in standard parameters in their own special way.

Each parameter has it's own unique name, and each user can have it's own value of each parameter.

For example, parameter can be used to store your name and address to print them in your faxes or bills. Also, some rights can be stored here, for example right to print reports - storing it in rights section would be waste of disk space, memory and time, you need only one right, not all basic four.

Groups

Groups were created to help administrator maintain all access rights for all users. If there was no groups, he would have to set parameters and rights for all users independently, and in short time he would be broken on mice and his hand would ache terribly. So groups provide default values of rights and parameters for users owned by that groups.

Each user has to be a member of exactly one group. Each group has copy of every right and parameter user can have. If value was not explicitly assigned to parameter or right – one from group of user is assumed.

You can’t set only one basic right – if you assign to one, the rest will be copied from group settings to user settings.

The other important thing is that when parameter or right values of group changes – so do all settings of user unless its value was assigned explicitly.

Also, for each group a list of groups that can have its properties modified by that group is maintained. For more information, see B³¹d! Nie okreœlono zak³adki.“SecurityLib Administrator Manual”.

3. Using SecurityLib

The SecurityLib library was projected in such a way, that usual user should have as little contact with it as possible. All you need to know, is how to enter your ID and password and how to change it. More advanced users can check what theirs rights and parameters are or change some of values.

Entering your ID and password


Each time you execute program secured with the library, window similar to that showed at the picture above is displayed. The library wants you to tell it who you are (this window also may be displayed when your program has to log in to database of another secured program to get some additional data).  At the top of the window there is name of program or database you are logging into. According to that name you should enter your ID and password, which you got from your administrator. Afterwards press Enter or OK button. If the password or ID was incorrect the window with information about that will be shown and you will have the possibility of entering password second time or resigning.

Having your password accepted SecurityLib library may display an information window with name of your program and license kind. If the data do not match the real program name or status, immediately inform MarVic or police, as using the library without proper license is illegal.

In this point sometimes you will be forced to changed your password to new one. This will happen mostly when you are logging for first time and have empty password or when administrator wants you to change your password because of security reasons. For instructions how to change password refer to the next part: B³¹d! Nie okreœlono zak³adki.Changing your password

Having your password accepted SecurityLib library may display an information window with name of your program and license kind. If the data do not match the real program name or status, immediately inform MarVic or police, as using the library without proper license is illegal.

Changing your password

The first thing you have to do is display the User Security window, the method of doing it vary on your program, check it’s documentation. User Security window is showed on picture below.


Now press the Change password button on the upper part of window. New dialog window with password options pops up.

If you want to change password enter the old one in appropriate textbox, and then the new one twice. Press OK and it’s done. Leave all fields empty if you don’t want to change the password.

Also you can check your password options. The meaning of each is presented in the following table:

Name

Meaning

Password Control

Allows user to change others’ passwords and options

Change password at login

Forces user to change password at next login

Disallow null password

User can’t have empty password

Allow changing password

Some of users, for example guests, can’t change password

Account disabled

Administrator may temporarily disable account of user to prevent him from logging in.

For more information about setting each of options refer to B³¹d! Nie okreœlono zak³adki.“SecurityLib Administrator Manual”

Viewing and changing rights and parameters

Sometimes you may want to check what your rights are, what you are allowed to do in your program. Or maybe your administrator asked you to change your parameters to match your data. In this part you will find instructions how to do it.


If you bring up User Security window, you’ll see that it is divided on two areas. In the upper one your rights are showed. In the row with name of right there are four checkboxes under appropriate basic right. When the checkbox is checked it means that you have that basic right. You can’t change rights in this window.

Under the grid there is small textbox with description of current right. If there is to little space, stop the mouse above the textbox for few seconds to see tooltip with full description.

In the lower part of window there is a grid with your parameters. You can change only these marked with black or blue color; those that are red or cyan are read only. Usually you will be asked to enter your name and other personal information, like address or telephone number. Just find the parameter you want to change.

If on the right of textbox with value of parameter there is a button with arrow it means that you can choose from list of valid values for this parameter: press on the button and then click desired value. If on the button there are three dots it means that this is parameter defined by your administrator. Press on the button to view custom dialog and set desired values.

When parameter or right name is written in blue or cyan the value of it is taken from group setting. When it’s in black or red, the value is set only for current user and changing this parameter or right for group has no effect on you.

You can press small button with picture on the right of grid to return to group value of parameter. It means that after doing it, changes to group parameters will effect you.

Afterwards press OK to apply changes or Cancel to discard them. Changes will not be visible until you log in again.

4. Other

 

Other documents:

“SecurityLib info”Other documents:B³¹d! Nie okreœlono zak³adki.                                          Basic information and introduction.

B³¹d! Nie okreœlono zak³adki.“User’s Manual”                                             Information for users of programs based on SecurityLib.

B³¹d! Nie okreœlono zak³adki.“SecurityLib Administrator Manual”            Information for administrators.

B³¹d! Nie okreœlono zak³adki.“Interface and programming guide”              Information for programmers.

B³¹d! Nie okreœlono zak³adki.www.marvic.prv.pl/securitylib/                     SecurityLib website.

 

                

               

              MS Access, Windows are trademarks of B³¹d! Nie okreœlono zak³adki.Microsoft Corp.

              All other trademarks are owned by their respective owners and were used only in information purposes.