博客园-net生活-随笔分类-asp.net

博客园-net生活-随笔分类-asp.nethttp://www.cnblogs.com/tsoukw/category/58503.htmlzh-cnMon, 01 Jun 2009 10:40:34 GMTMon, 01 Jun 2009 10:40:34 GMT60系统架构随笔--我看三层架构的数据访问层"怪胎"http://www.cnblogs.com/tsoukw/archive/2009/06/01/1493604.htmlKevin ZouKevin ZouMon, 01 Jun 2009 04:23:00 GMThttp://www.cnblogs.com/tsoukw/archive/2009/06/01/1493604.htmlhttp://www.cnblogs.com/tsoukw/comments/1493604.htmlhttp://www.cnblogs.com/tsoukw/archive/2009/06/01/1493604.html#Feedback17http://www.cnblogs.com/tsoukw/comments/commentRss/1493604.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1493604.html阅读全文]]>有感于:前台页面设计比后台实现更值钱http://www.cnblogs.com/tsoukw/archive/2009/05/27/1490604.htmlKevin ZouKevin ZouWed, 27 May 2009 02:09:00 GMThttp://www.cnblogs.com/tsoukw/archive/2009/05/27/1490604.htmlhttp://www.cnblogs.com/tsoukw/comments/1490604.htmlhttp://www.cnblogs.com/tsoukw/archive/2009/05/27/1490604.html#Feedback42http://www.cnblogs.com/tsoukw/comments/commentRss/1490604.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1490604.html阅读全文]]>巧用Reponse.Filter实现多语言功能http://www.cnblogs.com/tsoukw/archive/2008/11/26/1341188.htmlKevin ZouKevin ZouWed, 26 Nov 2008 02:24:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/11/26/1341188.htmlhttp://www.cnblogs.com/tsoukw/comments/1341188.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/11/26/1341188.html#Feedback26http://www.cnblogs.com/tsoukw/comments/commentRss/1341188.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1341188.html阅读全文]]>解耦的故事--权限设计2http://www.cnblogs.com/tsoukw/archive/2008/11/17/1334879.htmlKevin ZouKevin ZouMon, 17 Nov 2008 02:22:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/11/17/1334879.htmlhttp://www.cnblogs.com/tsoukw/comments/1334879.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/11/17/1334879.html#Feedback4http://www.cnblogs.com/tsoukw/comments/commentRss/1334879.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1334879.html阅读全文]]>关于web应用程序安全的思考(修改版)http://www.cnblogs.com/tsoukw/archive/2008/11/17/1334829.htmlKevin ZouKevin ZouMon, 17 Nov 2008 01:55:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/11/17/1334829.htmlhttp://www.cnblogs.com/tsoukw/comments/1334829.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/11/17/1334829.html#Feedback5http://www.cnblogs.com/tsoukw/comments/commentRss/1334829.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1334829.html阅读全文]]>安装VS2005的sp1补丁错误,未通过数字签名检查(轉)http://www.cnblogs.com/tsoukw/archive/2008/10/20/1315172.htmlKevin ZouKevin ZouMon, 20 Oct 2008 07:58:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/10/20/1315172.htmlhttp://www.cnblogs.com/tsoukw/comments/1315172.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/10/20/1315172.html#Feedback0http://www.cnblogs.com/tsoukw/comments/commentRss/1315172.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1315172.html阅读全文]]>质疑"一切皆OO"﹐重正数据库之名 --小论ado.net entity frameworkhttp://www.cnblogs.com/tsoukw/archive/2008/09/11/1288942.htmlKevin ZouKevin ZouThu, 11 Sep 2008 03:03:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/09/11/1288942.htmlhttp://www.cnblogs.com/tsoukw/comments/1288942.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/09/11/1288942.html#Feedback26http://www.cnblogs.com/tsoukw/comments/commentRss/1288942.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1288942.html阅读全文]]>轉Excel的一種簡單方法http://www.cnblogs.com/tsoukw/archive/2008/05/30/1210485.htmlKevin ZouKevin ZouFri, 30 May 2008 01:52:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/05/30/1210485.htmlhttp://www.cnblogs.com/tsoukw/comments/1210485.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/05/30/1210485.html#Feedback15http://www.cnblogs.com/tsoukw/comments/commentRss/1210485.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1210485.html阅读全文]]>解耦的故事--权限设计http://www.cnblogs.com/tsoukw/archive/2008/05/29/1210050.htmlKevin ZouKevin ZouThu, 29 May 2008 07:50:00 GMThttp://www.cnblogs.com/tsoukw/archive/2008/05/29/1210050.htmlhttp://www.cnblogs.com/tsoukw/comments/1210050.htmlhttp://www.cnblogs.com/tsoukw/archive/2008/05/29/1210050.html#Feedback28http://www.cnblogs.com/tsoukw/comments/commentRss/1210050.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/1210050.html本文将通过web应用系统中一个最常见的主题--权限设计﹐来说明解耦的应用。  阅读全文]]>别在领域模型迷失了自己http://www.cnblogs.com/tsoukw/archive/2007/09/28/908983.htmlKevin ZouKevin ZouFri, 28 Sep 2007 02:23:00 GMThttp://www.cnblogs.com/tsoukw/archive/2007/09/28/908983.htmlhttp://www.cnblogs.com/tsoukw/comments/908983.htmlhttp://www.cnblogs.com/tsoukw/archive/2007/09/28/908983.html#Feedback28http://www.cnblogs.com/tsoukw/comments/commentRss/908983.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/908983.html阅读全文]]>领域模型﹐打开OO的另一扇窗http://www.cnblogs.com/tsoukw/archive/2007/09/25/905618.htmlKevin ZouKevin ZouTue, 25 Sep 2007 08:44:00 GMThttp://www.cnblogs.com/tsoukw/archive/2007/09/25/905618.htmlhttp://www.cnblogs.com/tsoukw/comments/905618.htmlhttp://www.cnblogs.com/tsoukw/archive/2007/09/25/905618.html#Feedback37http://www.cnblogs.com/tsoukw/comments/commentRss/905618.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/905618.html然而﹐在大量的使用面向对象语言开发的系统中﹐您却很难看到这种模拟﹐而依然是些以数据库为中心的增删改查动作﹐很少能看到”真实的世界”的身影。
出现这种情况﹐很大程度上都是受数据库为中心的影响  阅读全文]]>关于web应用程序安全的思考(五) ---- 一切皆URLhttp://www.cnblogs.com/tsoukw/archive/2007/02/01/637106.htmlKevin ZouKevin ZouThu, 01 Feb 2007 07:51:00 GMThttp://www.cnblogs.com/tsoukw/archive/2007/02/01/637106.htmlhttp://www.cnblogs.com/tsoukw/comments/637106.htmlhttp://www.cnblogs.com/tsoukw/archive/2007/02/01/637106.html#Feedback23http://www.cnblogs.com/tsoukw/comments/commentRss/637106.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/637106.html1. Request.Path,这是最基本的形式。如:a.aspx , b/b.aspx , ajax/c.ashx
2. 带QueryString的Request.Path﹐这种形式增大了权限管控组件的适应性和灵活性(可参考上一篇的例子)。如 d.aspx?kind=1 , c/e.aspx?ismanage=Y
3. 只到某个目录的Request.Path﹐这种形式方便了某些权限简单的系统使用。如 f/ , g/h/  阅读全文]]>关于web应用程序安全的思考(四)----一种全新的权限管控思想http://www.cnblogs.com/tsoukw/archive/2006/12/29/606888.htmlKevin ZouKevin ZouFri, 29 Dec 2006 04:23:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/12/29/606888.htmlhttp://www.cnblogs.com/tsoukw/comments/606888.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/12/29/606888.html#Feedback8http://www.cnblogs.com/tsoukw/comments/commentRss/606888.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/606888.html我以一个实际的小型订单管理系统为例来实现这种权限设计方案﹐也欢迎大家能提出自己的权限设计方案来对比﹕  阅读全文]]>关于Web应用程序安全的思考(三)http://www.cnblogs.com/tsoukw/archive/2006/12/27/605192.htmlKevin ZouKevin ZouWed, 27 Dec 2006 09:05:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/12/27/605192.htmlhttp://www.cnblogs.com/tsoukw/comments/605192.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/12/27/605192.html#Feedback5http://www.cnblogs.com/tsoukw/comments/commentRss/605192.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/605192.html本篇主要討論安全管控的本質特點  阅读全文]]>关于web应用程序安全的思考(二)http://www.cnblogs.com/tsoukw/archive/2006/12/24/602034.htmlKevin ZouKevin ZouSun, 24 Dec 2006 03:03:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/12/24/602034.htmlhttp://www.cnblogs.com/tsoukw/comments/602034.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/12/24/602034.html#Feedback7http://www.cnblogs.com/tsoukw/comments/commentRss/602034.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/602034.html它有以下几个特点：
1.它是一个HttpModule
2.它捕获其中的AuthorizeRequest事件
3.它在这个事件中进行提取用户ID（认证）和判断用户是否有权（授权），以及对于没有权限的处理动作（拒绝）三个部分。
我们的安全管控模组的设计就从第3点的这三个部分出发...  阅读全文]]>关于web应用程序安全的思考(一)http://www.cnblogs.com/tsoukw/archive/2006/12/23/601252.htmlKevin ZouKevin ZouSat, 23 Dec 2006 03:33:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/12/23/601252.htmlhttp://www.cnblogs.com/tsoukw/comments/601252.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/12/23/601252.html#Feedback22http://www.cnblogs.com/tsoukw/comments/commentRss/601252.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/601252.html
所谓request﹐不过是符合http协议(即遵守http请求语法)的一大段字符串而已
  阅读全文]]>关于web应用程序安全的思考(序)http://www.cnblogs.com/tsoukw/archive/2006/12/22/600604.htmlKevin ZouKevin ZouFri, 22 Dec 2006 08:10:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/12/22/600604.htmlhttp://www.cnblogs.com/tsoukw/comments/600604.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/12/22/600604.html#Feedback16http://www.cnblogs.com/tsoukw/comments/commentRss/600604.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/600604.html阅读全文]]>.net内存回收与Dispose﹐Close﹐Finalize方法http://www.cnblogs.com/tsoukw/archive/2006/12/08/586525.htmlKevin ZouKevin ZouFri, 08 Dec 2006 07:50:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/12/08/586525.htmlhttp://www.cnblogs.com/tsoukw/comments/586525.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/12/08/586525.html#Feedback10http://www.cnblogs.com/tsoukw/comments/commentRss/586525.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/586525.html本篇帮您解答这一问题﹐并形象地理解.net的内存管理机制
  阅读全文]]>编码,charset,乱码,unicode,utf-8与net简单释义(续)http://www.cnblogs.com/tsoukw/archive/2006/07/13/449861.htmlKevin ZouKevin ZouThu, 13 Jul 2006 06:44:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/07/13/449861.htmlhttp://www.cnblogs.com/tsoukw/comments/449861.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/07/13/449861.html#Feedback3http://www.cnblogs.com/tsoukw/comments/commentRss/449861.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/449861.html  阅读全文]]>编码,charset,乱码,unicode,utf-8与net简单释义http://www.cnblogs.com/tsoukw/archive/2006/07/13/449588.htmlKevin ZouKevin ZouThu, 13 Jul 2006 01:55:00 GMThttp://www.cnblogs.com/tsoukw/archive/2006/07/13/449588.htmlhttp://www.cnblogs.com/tsoukw/comments/449588.htmlhttp://www.cnblogs.com/tsoukw/archive/2006/07/13/449588.html#Feedback21http://www.cnblogs.com/tsoukw/comments/commentRss/449588.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/449588.html阅读全文]]>如何在net中实现动态执行代码(js的eval)的功能?http://www.cnblogs.com/tsoukw/archive/2005/06/01/165693.htmlKevin ZouKevin ZouTue, 31 May 2005 23:21:00 GMThttp://www.cnblogs.com/tsoukw/archive/2005/06/01/165693.htmlhttp://www.cnblogs.com/tsoukw/comments/165693.htmlhttp://www.cnblogs.com/tsoukw/archive/2005/06/01/165693.html#Feedback8http://www.cnblogs.com/tsoukw/comments/commentRss/165693.htmlhttp://www.cnblogs.com/tsoukw/services/trackbacks/165693.html阅读全文]]>