Results 1 to 10 of 10

Thread: Solution Suggestions

  1. #1
    Join Date
    Feb 2009
    Posts
    2,165

    Default Solution Suggestions

    I have the need to provide a webapp that is to be run like a kiosk.
    Requirements are that it can only be accessed from the main location

    My first thought was to provide a double logon where a staff member logins and is allowed due to their rights.

    From the dashboard they then enable a patron logon screen. However rethinking this seems it may cause other issues.

    Has anyone come up with this scenario?

    I also though of using geolocation but again unsure if there are possible drawbacks

    Another was requiring a url paramater.

    Hope I have asked this question correctly

  2. #2
    Join Date
    Feb 2009
    Location
    Adelaide, South Australia
    Posts
    2,863

    Default Re: Solution Suggestions

    Depends how hard this requirement it. Will they also do all the testing on that terminal?

    You could respond to the ipaddress or a url parameter, and or confirm with a pin code, so not everyone can switch the terminal on and use it.

    On pos terminals pin code (with ofcourse big number buttons) are a common way of identifying yourself.
    Marco Kuipers
    DataFlex Consultant
    28 IT Pty Ltd - DataFlex Specialist Consultancy
    DataFlex Channel Partner for Australia and Pacific region
    Adelaide, South Australia
    www.28it.com.au

  3. #3
    Join Date
    Feb 2009
    Location
    Stuart, FL
    Posts
    5,321

    Default Re: Solution Suggestions

    when you say main location what does that mean?

    A corporate network? if so you can easily limit it to that network
    Michael Salzlechner
    StarZen Technologies, Inc
    http.://www.starzen.com

    IT Director at Balloons Everywhere

    Development Blog
    http://www.salzlechner.com/dev

    DataFlex Package Manager (aka Nuget for DataFlex)
    http://windowsdeveloper.com/dfPackage

  4. #4
    Join Date
    Feb 2009
    Posts
    2,165

    Default Re: Solution Suggestions

    Clarification
    This is a school site where parents sign in and out on a touchscreen.

    It is a general webapp so open to anyone, however, I wish to limit
    parent access to the actual devices in the school.

    A thought occurred which is to allow the admin of system at school site to enable access from the admin dashboard by creating
    a daily cookie with a life span of a few hours (parent access time frame) which is checked when parents login in.

  5. #5
    Join Date
    Feb 2009
    Location
    Brazil
    Posts
    5,446

    Default Re: Solution Suggestions

    Easiest would be those devices to be placed in a dedicated subnet, and restrict access from it only as Michael suggested.

    it may not be in your control, but you can always try to suggest that
    Samuel Pizarro

  6. #6
    Join Date
    Sep 2020
    Location
    DAE Hengelo
    Posts
    147

    Default Re: Solution Suggestions

    Quote Originally Posted by Chris Spencer View Post
    I have the need to provide a webapp that is to be run like a kiosk.
    Requirements are that it can only be accessed from the main location

    My first thought was to provide a double logon where a staff member logins and is allowed due to their rights.

    From the dashboard they then enable a patron logon screen. However rethinking this seems it may cause other issues.

    Has anyone come up with this scenario?

    I also though of using geolocation but again unsure if there are possible drawbacks

    Another was requiring a url paramater.

    Hope I have asked this question correctly
    This would be something that IT system management should do. The way I would do it is by simply hosting the WebApp on a device facing the general LAN interface. Schools and businesses commonly already have their own internal DNS and as such parents.portal.local could simply point to the WebApp.

    Whether that is done one Windows using the hosts file or something in their local networking solution is up to them.

    As such no secondary URL management, etc. is needed and you can just develop your application with the idea in mind that only parents within school are accessing it.

    Sincerely,

    Bram Nijenkamp
    Data Access Europe

  7. #7

    Default Re: Solution Suggestions

    Quote Originally Posted by Chris Spencer View Post
    I have the need to provide a webapp that is to be run like a kiosk.
    Requirements are that it can only be accessed from the main location

    My first thought was to provide a double logon where a staff member logins and is allowed due to their rights.

    From the dashboard they then enable a patron logon screen. However rethinking this seems it may cause other issues.

    Has anyone come up with this scenario?

    I also though of using geolocation but again unsure if there are possible drawbacks

    Another was requiring a url paramater.

    Hope I have asked this question correctly
    Use IP restrictions at IIS level.

    Restrict to your own IP for testing and/or developing and the IP restriction of the school's IP address.
    Chances are pretty high that they have static IP addresses already.
    No need to code anything for that.

    --
    Wil

  8. #8
    Join Date
    Feb 2009
    Posts
    2,165

    Default Re: Solution Suggestions

    Thanls for all suggestions.

    I asked a general question which probably didn't help.

    This webapp is running on a remote server, not on any school network.

    It is also a multi tenant application so not anyone school gas control of management of ite etc
    My client has it hosted as he is the manager of the system and offers services to schools
    and schools can come on board at anytime once the tenant is etc is setup.

    Also teachers use tablets when on excursions to do head counts etc so as to keep track of
    children.

    I will research furher

  9. #9
    Join Date
    Sep 2020
    Location
    DAE Hengelo
    Posts
    147

    Default Re: Solution Suggestions

    Quote Originally Posted by Chris Spencer View Post
    Thanls for all suggestions.

    I asked a general question which probably didn't help.

    This webapp is running on a remote server, not on any school network.

    It is also a multi tenant application so not anyone school gas control of management of ite etc
    My client has it hosted as he is the manager of the system and offers services to schools
    and schools can come on board at anytime once the tenant is etc is setup.

    Also teachers use tablets when on excursions to do head counts etc so as to keep track of
    children.

    I will research furher
    In that case there isn't much else an option than to register 'devices' to an account or the WebApp in general. You could make this work by generating keys using de Security Library and set those in a cookie which is permanent or at least for a longer time than usual. When performing a request the SessionManager should check that key for its (user) registration.

    IP filtering might still be an option but if they go on excursions as you say then, the cookies are pretty much the only thing you can do to assure that it is a trusted device. You need to do it this way as many devices like Apple devices don't share any system information other than a browser...

  10. #10
    Join Date
    Feb 2009
    Location
    Stuart, FL
    Posts
    5,321

    Default Re: Solution Suggestions

    A private VPN would work in that case. Only users connected and authenticated to the VPN would have access
    Michael Salzlechner
    StarZen Technologies, Inc
    http.://www.starzen.com

    IT Director at Balloons Everywhere

    Development Blog
    http://www.salzlechner.com/dev

    DataFlex Package Manager (aka Nuget for DataFlex)
    http://windowsdeveloper.com/dfPackage

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •