Posted by dino d. on 03/12/07 14:43

> Any dangerous operation (i.e. altering a database entry) needs to be
> authorized at the time of the submission.

ok - so just to clarify, what is the technique to do this- with a meta
table on the database server, i.e.:


Table Permissions:

UserID: int TableID: int RecordID: int Permission: int

how about with sessions? if anything else, can you give some
specific techniques as to how to do this? what i'm really trying to
get to is, what is the generally accepted, easiest (built into php?)
way to ensure that the user is authorized to edit a row upon
submission? thanks for all the posts.

thanks again,
dino

[Back to original message]