Security
In most applications, security controls are implemented fundamentally to protect data stored in documents against unauthorized access and against unauthorized change or deletion. As the developer, you will need to know who accesses your application, what they are allowed to see, and what they are allowed to do and when they are allowed to do it.
Two key concepts can guide application security deliberations.
Layered security, also referred to as defense in depth, refers to the implementation of several barriers that must be penetrated before a user is allowed to access specific data. Depending upon organizational and application requirements, these are the kinds of controls that can be implemented:
A user must have a Notes account and password to access the Domino environment.
A user must be authorized to access the server hosting the application.
A user must be authorized to access the application.
A user must be authorized to use certain design elements, such as views and forms...
