Page 1 of 1

Framework/DB/Security question/'s

Posted: Tue Jul 27, 2010 1:50 pm
by buckit
So, I am creating an SaaS in PHP and am looking at finally diving into a framework. CodeIgniter seems to make the most sense to me.

This is going to be an isolated database design.

Codeigniter seems as tho it will work.

what I am thinking is the primary database connection as built into codeigniter would be the user database to authenticate against... then create a model to dynamically create a new database connection to the users database.

only other thing i can think of is to create an isolated table schema instead. that simplifies some things but not sure I want a shared database... reason being is the data per tenant isn't all that valuable, but the combined data of all tenants would be invaluable and if known, draw significant attention from hackers. Honestly I would say the data is more valuable than medical records so I am going to approach from a Hipaa standpoint. (I feel like a complete douche bag saying how valuable the data is, but it really is, and the more I think about it the more I realize security is critical).

The key parts of the data stored in the database will be encrypted. CodeIgniters encrypt/decrypt seem to be efficient to make this happen.


so really I am asking if CodeIgniter is going to cause me more harm than good with an isolated database structure... and all the other information I gave leaves it open for opinions on how to approach this differently.

from a hardware infrastructure standpoint, it is all being custom designed for this application with tight security being key.

Re: Framework/DB/Security question/'s

Posted: Tue Jul 27, 2010 1:54 pm
by buckit
I guess this (http://codeigniter.com/user_guide/datab ... cting.html) answers the primary question of whether or not CodeIgniter can easily support connecting to multiple DBs :) Dont know how I missed this the first time around LOL... my bad!