I have a situation where I need to show/hide certain records based on who logs in. Conceptually, I planned on creating a user table and validating their access with session variables based on their area.
For Example:
User Table:
Username | Password | Area
testa | ******* | 21
Product Data Table:
Product Name | Price | Area
Rag | 1.00 | 21
Tires | 100.00 | 22, 23
So testa user would only be able to see the 'Rag' product and would not be able to see the 'Tires' product.
Before I start heading down the wrong path, I wanted to see if anybody had any other ideas that might be more efficient. Any helpful advice would be appreciated.
Direction on Access Level / Security Privileges
Moderator: General Moderators
Re: Direction on Access Level / Security Privileges
I think you should read a book about database design. Or at least an article. Try this one: http://www.datanamic.com/support/lt-dez ... eling.html Pay particular attention to the many-to-many relationship stuff.
Re: Direction on Access Level / Security Privileges
Point taken, but please realize that my example is a very basic illustration of how one might secure records. I'm more concerned with strategies that might be used to secure records for certain users. Thanks.