How to secure LinQ ?
To secure Linq with Visual Guard you have to:
- Add the assemblies of Visual Guard as references of your project.
- Integrate Visual Guard in the code of your application.
- Create a Visual Guard repository and declare your application by using the
Visual Guard console. This repository will contain all security items (users,
roles, permissions …) of your application. - Generate the Visual Guard configuration
files by using the Visual Guard console. These configuration files will be
needed to connect your application to the repository. - Grant read/write permissions to the repository.
Referencing Visual Guard assemblies
- Opens the solution of your project in Visual Studio.
- In the solution explorer, expands the project node.
- Right-click the Project node for the project and select
Add Reference
from the shortcut menu. - In .Net tab, select the 3 assemblies
- Novalys.VisualGuard.Security
- Novalys.VisualGuard.Security.<RepositoryType> (Files, SQLServer or Oracle)
- Novalys.VisualGuard.Security.<ApplicationFrameworkType> (Depending on type of application’s framework, whether .NetFramework or .NetCore)
And, then click the Select button, and then click the OK button
 Note |
|---|
| In the list of assemblies, Visual Studio can display different versions of the Visual Guard assemblies. You must select the assembly corresponding to the version of the framework used in your project. |
| Note |
|---|
| Once the Visual Guard assemblies are referenced into project, you need to mark “Copy Local” property to “true” for each assembly. |
| Note |
|---|
| You must add either Novalys.VisualGuard.Security.NetFramework or Novalys.VisualGuard.Security.Core (Depending on type of application’s framework) |
- Novalys.VisualGuard.Security contains the main Visual Guard classes.
- Novalys.VisualGuard.Security.Files contains the classes needed to access
to a file based repository. - Novalys.VisualGuard.Security.SQLServer contains the classes
needed to access to a repository stored in a Microsoft SQLServer database
(SQLServer 2005 or higher). Available only in Visual Guard Enterprise Edition - Novalys.VisualGuard.Security.Oracle
contains the classes needed to access to a repository stored in an Oracle
database (9i or higher). Available only in Visual Guard Enterprise Edition - Novalys.VisualGuard.Security.NetFramework contains all classes required to support .Net Framework applications.
This assembly is needed only if you want to integrate Visual Guard in .net framework applications. - Novalys.VisualGuard.Security.Core contains all classes required to support .Net Core applications.
This assembly is needed only if you want to integrate Visual Guard in .net core applications.
Secure a stored Procedure
- Novalys.VisualGuard.SecurityVGSecurityManager
provides the main access point for interacting with Visual Guard. It
provides authentication and authorization features, it allows to set
the security of the object of your application.
CREATE PROCEDURE selectProduct AS BEGIN SELECT [ID] ,[ProductCode] ,[ProductName] ,[CreateDate] ,[PaysID] FROM [ProductDB].[dbo].[Product] END
class ClassProduct: VGISecurable { .... public ClassProduct() { VGSecurityManager.SetSecurity(this); //Load the security } }
[VGPrincipalPermission(SecurityAction.Demand, Name = "canReadProduct", Type = VGPermissionType.Permission)] //Secure the stored procedure public IEnumerable <Product> getProduct() { var result = dc.selectProduct(); return result; }
private void loadProduct() { ClassProduct cProduct = new ClassProduct(); try { DataContext = cProduct.getProduct(); //Call the stored procedure } catch (Exception E) { MessageBox.Show(E.Message); } }
How to initialise a parameter of a stored procedure with a permission of a
user
CREATE PROCEDURE selectProductByCodePays ( @codePays char(3) ) AS BEGIN SELECT Prod.* FROM Product Prod, Pays P WHERE Prod.PaysID = P.ID AND P.CodePays = @codePays END
string userPaysCode; public string userPays { get { return ""; } set { ClassPays cPays = new ClassPays(); var res = cPays.getPaysByName(value); userPaysCode = res.Single().CodePays; } }
this.userPays=<#Permission['PaysCode']>
public IEnumerable <Product> getProductByCodePays() { var result = dc.selectProductByCodePays(userPaysCode); return result; }
How to secure a linq querry
- Create a property to initialise it throw the permission,
- Create a permission with a Argument in Visual Guard console,
- Filter the linq querry with the parameter.
public int userPaysID { get; set; } public IEnumerable<Product> getProductByID() { var result = from prod in dc.selectProduct() where prod.PaysID == userPaysID select prod; return result; }