This security add in allows us to restrict access to a given row of
a sql server table and also allows to reuse the data from that query for
piping purposes using the data attributes.
- Sql connection string is
the connection string that will be used by FS to connect to our sql
database.
- Sql query is the query
that will be used to retrieve our data row. The query must contain
all column that we whish to use a data attributes :
eg: select name, birthdate from contact where lastname = (*SQLKey*)
In the query above we will be able to use the name and birthdate from
our contact table based on the (*SQLKey*) value. The (*SQLKey*) value
will be replaced at runtime by the value provided by the respondent
or from our environment eg: if we pass it from a querystring.
Note that there is no need to specfiy any type in the query for the
(*SQLKey*) tag. As such there is no need to write lastname = '(*SQLKey*)
', lastname = (*SQLKey*) is enough.
- Access only to SQL entries
we can restrict access only to sql queries returning a least one row
with the provided key values .
- Allow multiple submissions
we allow or prevent multiple submissions for our sql entries .
- Hide login screen we can
hide the login screen if for example we are passing our key value
through a querystring and dont want to allow the respondent to enter
it manually. If no key value is provided FS will skip the form to
the thank you page.
- Sql key source variable name is
the variable name that will holds the sql key value. Querystring,
cookie and session object will be checked to see if they contains
a valid sql key that FeedbackServer can use to execute the sql query
to retrieve a row.
- Sql key test value must
be a valid value that will return a row from our query when (*SQLKey*)
gets replaced by it in our sql query .
- Key entry label we can
change the entry text in our login screen.
- Invalid key message is
the error message shown on the login screen in case the key entered
by the user doesnt return any row with our sql query.