Login Form with Permission settings

[james.eacret]

Good day all.

I am currently working on an Access (2003) db with a windows
environment. I have been asked to add a login form. This seems very
standard, and mostly it works fine. The catch is that there has to be
permissions assigned when logged in.

Basic Idea:
Three Users in the db
Admin -- Full Access (passwd protected)
Operator -- Read & Write in the forms and generate reports (passwd
protected)
Readonly -- Only be able to view Forms and reports

There are quite a few forms in the db, I would rather not go into each
one and add the code where if user = Readonly, foobar.form = Read Only.
Or something to that extent.

I created the Operator and Readonly account using the security user and
group settings in Access. Then made Access prompt for a user name and
password. However the db owner wants a drop down menu to list the
three types of users and then have a password for the Operator and
Admin user.

Is there a way to have a form pass along the user to the db in order to
use the set permissions?

Thanks for the help!

 

[Joan Wild]

Basic Idea:
Three Users in the db
Admin -- Full Access (passwd protected)
Operator -- Read & Write in the forms and generate reports (passwd
protected)
Readonly -- Only be able to view Forms and reports

There are quite a few forms in the db, I would rather not go into each
one and add the code where if user = Readonly, foobar.form = Read
Only. Or something to that extent.

You could instead hide/display items based on the group the user belongs to,
rather than their username.

I created the Operator and Readonly account using the security user
and group settings in Access. Then made Access prompt for a user
name and password.

There is a lot to security; if you did only the above, then you need to
start over. The very first step is to create a new workgroup file to secure
your mdb with. It sounds as though you just created two users. If that's
what you did, then you modified the standard system.mdw that ships with
Access. This workgroup file is used in all sessions of Access (whether your
mdb is secure or not), so you don't want to modify it.

If you want to implement security, you need to study up on it. Practice
implementing on a copy of your mdb. Some resources:
Security FAQ
http://support.microsoft.com/?id=207793

Security Whitepaper
http://support.microsoft.com/?id=148555

Although the whitepaper is old, it contains information to help you
understand security.

I've also outlined the detailed steps at
www.jmwild.com/AccessSecurity.htm

However the db owner wants a drop down menu to
list the three types of users and then have a password for the
Operator and Admin user.

It sounds to me that what you really want is three Groups. You assign
permissions based on Groups, then you can create and add users to the groups
as needed.

If you don't want the Read Only Group members to login, you can assign
permissions to the Users Group, and let those users open the database using
their default system.mdw workgroup. The Operator and Admins Users would use
your secure mdb and be required to login.