Access Cookbook, 2nd Edition [Electronic resources] نسخه متنی

اینجــــا یک کتابخانه دیجیتالی است

با بیش از 100000 منبع الکترونیکی رایگان به زبان فارسی ، عربی و انگلیسی

جستجو بر اساس ... همه عنوان پدیدآور موضوع یادداشت تمام متن
اصطلاحنامه مجموعه ها مرورالفبایی لغت نامه دهخدا
جستجو در لغت نامه
بیشتر
کتابخانه شخصی پرسش از کتابدار ارسال منبع

Access Cookbook, 2nd Edition [Electronic resources] - نسخه متنی

Ken Getz; Paul Litwin; Andy Baron

| نمايش فراداده ، افزودن یک نقد و بررسی
افزودن به کتابخانه شخصی
میخواهم بخوانم
درحال خواندن
خوانده شده
ارسال به دوستان

آدرس پست الکترونیک گیرنده :

آدرس پست الکترونیک فرستنده :

نام و نام خانوارگی فرستنده :

پیغام برای گیرنده ( حداکثر 250 حرف ) :

کد امنیتی را وارد نمایید

ارسال
جستجو در متن کتاب
بیشتر
تنظیمات قلم

فونت

اندازه قلم

+ - پیش فرض

حالت نمایش

روز نیمروز شب
جستجو در لغت نامه
بیشتر
لیست موضوعات

Sitemap

Main Page

Table of content

Copyright

Preface

What This Book Is About

Who This Book Is For

What You Need to Use This Book

How This Book Is Organized

What We Left Out

Conventions Used in This Book

Comments and Questions

Acknowledgments

Chapter 1. Queries

Recipe 1.1 Specify Query Criteria at Runtime

Recipe 1.2 Using a Form-Based Parameter Query

Recipe 1.3 Limit the Items in One Combo Box Based on the Selected Item in Another

Recipe 1.4 Make Formatted Date Columns Sort Correctly in a Crosstab Query

Recipe 1.5 Group Mailing Labels by Address

Recipe 1.6 Use a Field in One Table to Update a Field in Another Table

Recipe 1.7 Use a VBA Variable to Filter a Query

Recipe 1.8 Use a Query to Retrieve a Random Set of Rows

Recipe 1.9 Create a Query That Will Show Aging of Receivables

Recipe 1.10 Create a Join That's Based on a Comparison Other than Equality

Recipe 1.11 Create a Query to Combine Data from Two Tables with Similar Structures

Recipe 1.12 Create a Combo Box That Allows a User to Select N/A

Recipe 1.13 Use a Query to Show the Relationship Between Employees and Supervisors

Recipe 1.14 Create a Query That Uses Case-Sensitive Criteria

Recipe 1.15 Use a Query to Create a New Table Complete with Indexes

Recipe 1.16 Save My Queries in a Table for Better Programmatic Access and Security

Recipe 1.17 Create a Recordset Based on a Parameter Query from VBA Code

Chapter 2. Forms

Recipe 2.1 Make Custom Templates for Forms and Reports

Recipe 2.2 Highlight the Current Field in Data-Entry Forms

Recipe 2.3 Restrict the User to a Single Row on a Form

Recipe 2.4 Use an Option Group to Collect and Display Textual Information

Recipe 2.5 Display Multiple Pages of Information on One Form

Recipe 2.6 Provide Record Navigation Buttons on a Form

Recipe 2.7 Size a Form's Controls to Match the Form's Size

Recipe 2.8 Make a Simple 'Searching' List Box

Recipe 2.9 Create a Replacement for Access's InputBox

Recipe 2.10 Store the Sizes and Locations of Forms

Recipe 2.11 Open Multiple Instances of a Form

Chapter 3. Reports

Recipe 3.1 Create a Report with Line Numbers

Recipe 3.2 Print the Value of a Parameter on a Report

Recipe 3.3 Create a Report with Multiple Columns

Recipe 3.4 Print a Message on a Report if Certain Conditions Are Met

Recipe 3.5 Create a Page-Range Indicator on Each Page

Recipe 3.6 Create a Simple Bar Graph on a Report

Recipe 3.7 Create a Page Total

Recipe 3.8 Avoid Unwanted Blank Rows on Mailing Labels

Recipe 3.9 Suppress Printing a Report if There Are No Records to Print

Recipe 3.10 Print Different Headers or Footers on Odd and Even Pages

Recipe 3.11 Make a Vertical Line the Same Height as a CanGrow/CanShrink Control

Recipe 3.12 Alternate Gray Bars on My Reports

Recipe 3.13 Print Only Records Matching a Form's Filter

Recipe 3.14 Keep a Report from Breaking at an Inappropriate Place

Recipe 3.15 Customize a Report's Grouping and Sorting at Runtime

Chapter 4. Applications

Recipe 4.1 Convert Queries into Embedded SQL Statements

Recipe 4.2 Build an Object Inventory

Recipe 4.3 Verify That Objects Use Consistent Settings

Recipe 4.4 Hide Access Screen Activity

Recipe 4.5 Find out What Language Version of Access Is Installed

Recipe 4.6 Internationalize Text in Your Applications

Recipe 4.7 Change and Reset the Access Caption Bar

Recipe 4.8 Use the Windows File Open/Save Common Dialogs

Recipe 4.9 Clean Test Data out of a Database When You're Ready to Ship It

Recipe 4.10 Secure Your Access Database

Chapter 5. Printers

Recipe 5.1 Retrieve a List of All the Installed Output Devices

Recipe 5.2 Set and Retrieve the Name of the Default Output Device

Recipe 5.3 Programmatically Change Margin and Column Settings for Reports

Recipe 5.4 Programmatically Change Printer Options

Recipe 5.5 Programmatically Control the Paper Source

Recipe 5.6 Retrieve Information About a Report or Form's Selected Printer

Recipe 5.7 Choose an Output Device at Runtime

Recipe 5.8 Find Which Reports Are Not Set to Print to the Default Printer

Chapter 6. Data

Recipe 6.1 Save with Each Record the Name of the Last Person Who Edited It and the Date and Time

Recipe 6.2 Determine if You're on a New Record in a Form

Recipe 6.3 Find All Records with Names That Sound Alike

Recipe 6.4 Find the Median Value for a Field

Recipe 6.5 Quickly Find a Record in a Linked Table

Recipe 6.6 Get a Complete List of Field Properties from a Table or Query

Recipe 6.7 Create and Use Flexible AutoNumber Fields

Recipe 6.8 Back Up Selected Objects to Another Database

Chapter 7. VBA

Recipe 7.1 Build Up String References with Embedded Quotes

Recipe 7.2 Create a Global Procedure Stack

Recipe 7.3 Create an Execution Time Profiler

Recipe 7.4 Multitask Your VBA Code

Recipe 7.5 Programmatically Add Items to a List or Combo Box

Recipe 7.6 Pass a Variable Number of Parameters to a Procedure

Recipe 7.7 Sort an Array in VBA

Recipe 7.8 Fill a List Box with a List of Files

Recipe 7.9 Handle Object Properties, in General

Recipe 7.10 Detect Whether an Object Exists

Chapter 8. Optimization

Recipe 8.1 Accelerate the Load Time of Forms

Recipe 8.2 Make Slow Forms Run Faster

Recipe 8.3 Make Combo Boxes Load Faster

Recipe 8.4 Use Jet Engine Optimizations to Speed Up Queries

Recipe 8.5 Accelerate VBA Code

Recipe 8.6 Test the Comparative Benefits of Various Optimization Techniques

Recipe 8.7 Accelerate Multiuser Applications

Recipe 8.8 Accelerate Client/Server Applications

Chapter 9. User Interface

Recipe 9.1 Create Context-Sensitive Keyboard Shortcuts

Recipe 9.2 Create a Form with No Menu or Toolbar

Recipe 9.3 Create a Geographical Map Interface

Recipe 9.4 Mark a Record on a Form and Return to It Later

Recipe 9.5 Carry Data Forward from Record to Record

Recipe 9.6 Create a Combo Box That Accepts New Entries

Recipe 9.7 Create Animated Buttons

Recipe 9.8 Create an Expanding Dialog

Recipe 9.9 Use an ActiveX Control

Recipe 9.10 Create a Generic, Reusable Status Meter

Chapter 10. Multiuser Applications

Recipe 10.1 Properly Secure Your Database

Recipe 10.2 Maintain Multiple Synchronized Copies of the Same Database

Recipe 10.3 Create a Transaction Log

Recipe 10.4 Send Messages to Other Users Without Using Email

Recipe 10.5 Programmatically Track Users and Groups

Recipe 10.6 Adjust an Application Based on Who's Logged In

Recipe 10.7 List All Users with Blank Passwords

Recipe 10.8 Track Which Users Have a Shared Database Open

Recipe 10.9 Determine if a Record Is Locked and by Whom

Recipe 10.10 Set a Maximum Locking Interval for a Record

Chapter 11. Windows APIs

Recipe 11.1 Remove a Form's System Menu and Maximize/Minimize Buttons

Recipe 11.2 Flash a Window's Titlebar or Icon

Recipe 11.3 Classify Keypresses in a Language-Independent Manner

Recipe 11.4 Restrict Mouse Movement to a Specific Region

Recipe 11.5 Run Another Program and Pause Until It's Done

Recipe 11.6 Exit Windows Under Program Control

Recipe 11.7 Run the Application Associated with a Data File

Recipe 11.8 Check to See if an Application Is Already Running

Recipe 11.9 Retrieve a List of All Top-Level Windows

Recipe 11.10 Close a Running Windows Application

Recipe 11.11 Set File Date and Time Stamps

Recipe 11.12 Retrieve Information About Available Drives

Recipe 11.13 Collect and Display Information on the System and the Access Installation

Recipe 11.14 Create and Cancel Network Connections Programmatically

Chapter 12. Automation

Recipe 12.1 Play an Embedded Sound File from Within an Application

Recipe 12.2 Print an Access Report from Excel

Recipe 12.3 Use Excel's Functions from Within Access

Recipe 12.4 Perform a Mail Merge from Access to Word

Recipe 12.5 Add an Item to the Startup Group

Recipe 12.6 Send Access Data to Excel and Create an Excel Chart

Recipe 12.7 Create a PowerPoint Presentation from Access Data

Recipe 12.8 Add a Contact and Send Email Through Outlook

Chapter 13. Data Access Pages

Recipe 13.1 Replace Navigation Button Images with Your Own Images

Recipe 13.2 Use Labels or Other Controls for Record Navigation

Recipe 13.3 Change the Text Displayed with a Navigation Control

Recipe 13.4 Create a DAP that Allows You to Update Data

Recipe 13.5 Create One File to Store Connection Information for All DAPs in an Application

Recipe 13.6 Programmatically Change the Connection String for All Pages in a Database

Recipe 13.7 Change the Default Settings for New DAPs

Recipe 13.8 Use Parameters Set in One DAP to Open Another

Chapter 14. SQL Server

Recipe 14.1 Dynamically Link SQL Server Tables at Runtime

Recipe 14.2 Dynamically Connect to SQL Server from an ADP

Recipe 14.3 Share an ADP from a Shared Network Folder

Recipe 14.4 Fill the Drop-Down Lists When Using ServerFilterByForm in an ADP

Recipe 14.5 Pass Parameters to Stored Procedures from Pass-Through Queries in an MDB

Recipe 14.6 Pass Parameters to Stored Procedures from an ADP

Recipe 14.7 Use Controls as Parameters for the Row Source of Combo and List Boxes in an ADP

Recipe 14.8 Reference Data from More than One SQL Server Database in an ADP

Recipe 14.9 Use Views to Update Data in an ADP When Users Don't Have Permissions on Tables

Chapter 15. Office Web and SharePoint

Recipe 15.1 Work with SharePoint Data from Access

Recipe 15.2 Create a SharePoint Data View Web Part Based on Access Data

Recipe 15.3 Conditionally Format a Data View Web Part

Recipe 15.4 Create a Master/Detail Page using Data View Web Parts

Recipe 15.5 Post Web Form Data to an Access Database

Recipe 15.6 Create a Web Frontend to an Access Table Using FrontPage

Chapter 16. Smart Tags

Recipe 16.1 Use the Built-in Smart Tags

Recipe 16.2 Display Multiple Smart Tags on Multiple Forms

Recipe 16.3 Display Smart Tags when Application Starts

Recipe 16.4 Execute a Smart Tag Action Without Displaying the Smart Tag

Recipe 16.5 Create a Smart Tag on a Table in an Access Project

Recipe 16.6 Create a Custom Smart Tag to Get a Weather Report

Recipe 16.7 Create a Custom Smart Tag DLL

Chapter 17. .NET

Recipe 17.1 Call a .NET Component from Access

Recipe 17.2 Call a .NET Component Containing a Parameterized Constructor

Recipe 17.3 Retrieve Access Data from an ASP.NET Application

Recipe 17.4 Call a Web Service from Access

Recipe 17.5 Work with a Web Service that Returns a DataSet

Recipe 17.6 Print an Access Report from .NET Windows Form Application

Chapter 18. XML

XML Overview

Recipe 18.1 Import XML Structured as Elements

Recipe 18.2 Import XML into Existing Tables

Recipe 18.3 Import XML Using a Schema (XSD)

Recipe 18.4 Export XML

Recipe 18.5 Exporting Selected Columns to an HTML Table

Recipe 18.6 Export Unrelated Tables

Recipe 18.7 Export Using a Where Clause

Recipe 18.8 Export a Report

Colophon

Index

Index SYMBOL

Index A

Index B

Index C

Index D

Index E

Index F

Index G

Index H

Index I

Index J

Index K

Index L

Index M

Index N

Index O

Index P

Index Q

Index R

Index S

Index T

Index U

Index V

Index W

Index X
توضیحات
افزودن یادداشت جدید










Recipe 4.10 Secure Your Access Database



4.10.1 Problem


You've
created an Access database that you'd like to
secure. The database contains some sensitive data to which you wish
to limit access. You'd like to be able to create
different classes of users, so that some users have no access to this
data, others can read the data but can't change it,
and still others can modify the data. How can you accomplish this?


4.10.2 Solution


The
Microsoft Jet database engine, which Access uses to store and
retrieve its objects and data, employs a workgroup-based security
model that allows you to secure your Access databases, assigning
permissions to users and groups. Access supports two mechanisms for
securing your database: the database password feature and user-level
security. The database password feature is an all-or-nothing
propositionusers who know the password aren't
restricted in any way once they're in the database.
If you want to assign varying permissions to different users,
you'll need user-level security. User-level security
is fairly complexit doesn't work if you leave
out a step. It consists of creating a new workgroup file (which holds
user, group, and password information) and then using this new
workgroup file to secure the database. There is a Security Wizard
built into Access that will help you secure your database, but you
can also manually perform the process, which will help you understand
what's happening.

User-level security relies on a special
database, called a

workgroup file , to store
users, the groups to which they belong, and their passwords. When you
install Access, you are automatically hooked up to a default
workgroup file called

System.mdw . To secure your
database, you will need to create your own unique workgroup file.

Every
Access workgroup file includes two built-in groups: the Users group,
which contains every user; and the Admins group, the members of which
automatically get permission to administer security. There is also
one built-in user, Admin. The Admin user starts out in the Admins
group, but don't let the name Admin confuse you. You
can remove Admin from the Admins group and take away all its
administrative privileges, as long as some other user is left in
Admins to act as the administrator. The Admin user has the same
identity in every Access workgroup file, so any privileges that you
give Admin will be available to anyone.

Securing a database involves adding a new member to the Admins group,
removing the Admin user from that group, removing permissions from
the Admin user and from the Users group, and assigning permissions to
the custom groups that you define. The steps that follow show you how
to implement user-level security in your Access database:

  1. Create a new, unique workgroup
    file. In Access 2002 and later, this capability is built into the
    product, but in older versions you must run a separate utility called
    the Workgroup Administrator (Wrkgadm.exe). Write
    down the Name, Organization, and Workgroup ID strings that will be
    requested when you create your new workgroup file, and store them in
    a safe place. These strings will be encrypted to form the unique
    identity of your new workgroup fileif the original ever
    becomes lost or corrupted, it can be reconstructed as long as you
    input the identical strings. Each database
    "knows" the workgroup file it was
    secured with by this unique token (the Workgroup ID, or WID) and will
    not recognize a workgroup file that has a different WID. This means
    that you'll be permanently locked out of your
    database if you lose these strings. Also, upgrading a secured Access
    database to a newer version of Access is almost impossible if you
    don't have this information, because the recommended
    upgrade path is to recreate the workgroup file in the new version of
    Access and then upgrade the secured database. Figure 4-19 shows the Workgroup Administrator dialog with
    the new workgroup information. You can try this solution with any of
    the MDB files used in this chapter, such as 04-09.MDB.



Figure 4-19. The Workgroup Administrator dialog


  1. The
    Workgroup Administrator automatically switches you to the new
    workgroup file, so you can simply close when you're
    finished. The Workgroup Administrator will create the necessary
    entries in the registry, making the new workgroup file the default.
    Start Access and load your database.

  2. You will be logged on as a user named Admin. Use the Security menu
    options to set a password for the Admin user. This causes Access to
    prompt for a logon name and password the next time you try to open a
    database using this workgroup file.

  3. Create a new user, which is the account
    you will use to secure the database. Add this new user to the Admins
    group, to make it the administrator. None of the user accounts has
    any built-in capabilities. You also need to write down the strings
    used for the Name and Personal Identifier (PID). Part of recreating a
    workgroup file is recreating the key accounts stored in it. The PID
    is not a passwordit is encrypted along with the name string to
    create a System Identifier, or SID. The SID is the token used when
    assigning permissions and when distinguishing users from each other.
    The name alone isn't secure, although Access
    won't let you have duplicate names in the same
    workgroup file.

  4. Quit Access entirely and restart, logging on as the new user account
    that you created in Step 4. Don't type anything in
    the Password dialogyou haven't set one for
    this account yet.

  5. Remove the Admin user from the
    Admins group so that Admin is a member of only the Users group. Every
    user is automatically added to the Users group, which is similar to
    Everyone in Windows. You can't delete any of the
    built-in users or groups (Admin, Admins, and Users), but you can move
    users in and out of various groups. Access requires that there always
    be one member of the Admins group (that would be you). Later
    you'll create additional groups, assigning
    permissions to the groups for various database objects. Users then
    inherit permissions from their group membership.
    You'll probably want to remove all permissions from
    the Users group, since permissions granted to Users are granted to
    all.

  6. At this point you'll
    want to secure the database. You can either run the Security Wizard
    or manually secure it. If you manually secure it,
    you'll create a new database (this is how you
    transfer ownership of the database) and then import all of the
    objects. Next, remove all permissions for the Users group and the
    Admin user. The Admins group has full permissions by
    defaultonly the Admins group can work with users and groups
    and has irrevocable administrative permissions on the database. If
    you use the Security Wizard, it will also remove all permissions from
    the Admin user and the Users group and encrypt the new database (you
    can do this manually if you choose).

  7. You need to create your own custom
    groups and assign the desired level of permissions to these groups.
    Every user is required to be a member of the Users group (otherwise,
    a user would not be able to start Access), so grant to Users only
    those permissions that you want everyone to have. Members of the
    Admins group have irrevocable power to administer database objects,
    so make sure to limit membership in the Admins group to only those
    users who are administrators.

  8. Create your own users and assign them to
    the groups that reflect the level of permissions you want them to
    have. Do not assign permissions directly to users, because that is
    extremely difficult to administer; users inherit permissions from the
    groups of which they are members, and keeping track of the
    permissions assigned to a group is much easier than keeping track of
    the separate permissions of individuals. If a user is a member of
    multiple groups, that user will have all the permissions granted to
    any of those groups plus any permissions assigned specifically to the
    user (this is known as the
    "least-restrictive" rule). There is
    no way to deny permissions to a user if that user is a member of a
    group that has been granted those permissions. If you need to create
    specific permissions for only a single user, create a group for that
    user and assign the permissions to the group; then add the user to
    the group. The reason for this becomes clear when you consider that
    the user may leave unexpectedly, and you may have to set up
    permissions for the replacement on short notice.

  9. Test security by logging on as users with varying levels of
    permissions. Try to do things that a user at that level
    shouldn't be able to do. The only way
    you'll be able to see if your database security is
    working is to bang on it and try to break it.



4.10.3 Discussion


The
Microsoft Jet database engine, which Access uses to store and
retrieve its objects and data, employs a workgroup-based security
model. Every time the Jet database engine runs, it looks for a
workgroup file, which holds information about the users and groups of
users who can open databases during that session. The default
workgroup file,

System.mdw , is identical across
all installations of Access. That's why
it's important not to skip the first step of
creating a new workgroup file.

The workgroup file contains the names
and security IDs of all the groups and users in that workgroup,
including passwords. Each workgroup file contains built-in groups
(Admins and Users) and a generic user account (Admin). You
can't delete any of the built-in accounts, but you
can add your own group and user accounts.

The built-in accounts each have their own characteristics and
properties:

  • The built-in Admins group is always present, and its users have
    administration rights that cannot be revoked. You can remove rights
    from the Admins group through the menus or through code, but any
    member of Admins can assign them right back. Access ensures that
    there is always at least one member in the Admins group to administer
    the database. The Admins group is the only built-in account that has
    any special properties.

  • The default user account, Admin, is a member of the Admins group in
    an unsecured database and is the only user account present in the
    default

    System.mdw workgroup file. It has no
    special properties of its own; all of its power is inherited through
    membership in the Admins group.

  • The Users group is a generic group to which all users belong. You can
    create users in code and not add them to the Users group, but they
    won't be able to start Accessinternal tables
    and system objects are mapped to the permissions of the Users group.
    Other than the fact that all users must belong to the Users group, it
    has no special properties.


Permissions to various Access
objects can be assigned directly to users (explicit permissions) or
to groups. Users inherit permissions from the groups to which they
belong (implicit permissions). It's always a good
idea from an administrative point of view to assign permissions only
to groups, and not to users, which could become endlessly
complicated.

Access employs the least-restrictive rule:
users have the sum total of their explicit and implicit permissions.
In other words, if a user belongs to a group that has full
permissions and you make that user a member of a group that has
restricted permissions, the user will still have full permissions
because he is a member of the unrestricted group.

User and group information, including passwords, is saved in the
workgroup file, or

System.mda/mdw , which
validates user logons at startup. Permissions to individual objects
are saved in the database itself. You can give the groups and users
within a workgroup various levels of permission to view, modify,
create, and delete the objects and data in a database. For example,
the users of a particular group might be permitted to read only
certain tables in a database and not others, or you could permit a
group to use certain forms but not to modify the design of those
forms.

Most Access database applications consist of a frontend with linked
tables against a backend database. You need to secure both the
frontend and the backend using the same workgroup file.

Access user-level security works best when securing dataif you
want to secure your code, the best solution is to compile your
application as an MDE. This prevents anyone from viewing or altering
the design of forms, reports, or module code. It also prevents users
from creating new Access objects, but it has no effect on data
objects (tables and queries). You'll need to save a
backup copy of the original

.mdb file if you
want to make alterations laterthere's no way
to decompile an MDE to recover the source code and source objects.

Also
bear in mind that security in an Access database is mainly good for
deterrence only. In any situation in which the physical files are
exposed, it is impossible to guard against determined hackers. An
additional weakness is that the network share where the Access

.mdb and

.mdw files are
located also needs to have read, write, and delete permissions, which
means you can't prevent users from deleting or
copying the

.mdb and

.mdw
files. The only alternative is to create an n-tier application where
the middle-tier objects alone have access to the physical files.
However, this means that you need to write the application
"unbound," since the users will no
longer be directly connected to the database. When you get to that
point, you'll probably be considering SQL Server or
another database platform that is capable of scaling to support more
users and larger volumes of data.


/ 232