I'm sorry but I never got this right, and I was wondering if anyone could help me with this.
I'm currently working on database-driven website. The database is in Access and I'm using ASP (not . NET) to access it. To access the database all I'm allowed to use are connection strings (I don't have access to and global.asa and so on).
My question is how do I connect to the database, to allow some user add a record to a certain table? What kind of permissions do I need to specify on the IIS, DB and what parameters should I pass through the ASP connection string?
I've been very unsuccessfull in the past with this, it seemed the only way to work this around was to set the db access to everybody modify, write, which i really don't wanna do.
Well... i dont know much about the connection string, but i can tell you how i solved something simular to this.
To make sure that one specific asp file got limited access, put it in another folder and put OS Security on the folder.
Result of this is that the user trying to access the asp file within that folder, will have to authenticate to access it.
This is controlled on OS Security level (users, groups etc.etc..)