January 18th, 2000, 11:57 PM
I am in the process of developing an applicaiton based on PHP and MySQL. My application requires that the visitors should be allowed to alter those records of a table which have their UserID value. The users will log in using their UserID and a Password which is stored and authenticated from a separate table. Can someone guide me as to what is the best way to implement this.
January 19th, 2000, 05:01 AM
We are doing something very similar at the moment and its very much still a design but here is an outline based on your message.
Create user role that can create a session and modify tables. This will also be used to log the user into the database. Setting their priveleges according to the user role.
We use a SSL connection for security purposes but this depends on your access to the server and the scenario.
There isn't much else to say, users then access their information and can change it using various SQL statements along with a bit of PHP to make sure that various rules are adhered to and mistakes are not made.
I don't know whether this is right or not but I hope it helps.
January 21st, 2000, 11:26 AM
In addition to falcon's scure connection, we had to do it without SSL.
Hopefully this will give you some inspiration for your own site.
Good luck, Peter