Restricting Access to DB on same server

Posted on 2005-04-17
Medium Priority
Last Modified: 2013-11-13

I want to be able to offer limited access to a DB to clients that are hosted on my server (only select clients NOT all).

I was thinking of offering them a set of functions, like an API, that they could utilize and use the recordset that is returned in the normal way. I could probably have a set of domain names that had access along with the server IP and verify that the call was coming from the correct domain name on the local server.

What do you think? Any better suggestions? Would the domain and IP of server be enough security?

I want to be able to offer the service without basically opening myself up to having it stolent by everybody.

All helpful suggestions or advice appreciate.
Question by:lux_interior
  • 2
LVL 14

Expert Comment

ID: 13800812
You can deny all permissions to all users and/or user groups, and then grant permissions individually to users and/or groups (assuming that you have some way to authenticate users, such as username and password).

Take a look at this:



  Nayer Naguib
LVL 10

Expert Comment

by:Eduard Ghergu
ID: 13804636
What DB server do you have ?

Author Comment

ID: 13805435
mysql. Too be honest I think a php solution offering an API is the best way to go. That way they never need to have access to the database.

Perhaps this should be moved to another section of EE?


LVL 10

Accepted Solution

Eduard Ghergu earned 500 total points
ID: 13812694
Usually, the way in that clients has access to a database is thru some accounts. So, I see no reason to restrict access using operating system security policies. You have to create your own database security policy with user groups and accounts. After that, you have to create a login page. After authentication, you have to store in a session variable or in a cookie (basically is the same thing, but the way of implementing is different) some access rights information. You can, afterwards, check the rights when then user ask for a page and provide or not access to some fields or whatever...
I hope that this is the answer to your question.

Featured Post

Prep for the ITIL® Foundation Certification Exam

December’s Course of the Month is now available! Enroll to learn ITIL® Foundation best practices for delivering IT services effectively and efficiently.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Today, the web development industry is booming, and many people consider it to be their vocation. The question you may be asking yourself is – how do I become a web developer?
In real business world data are crucial and sometimes data are shared among different information systems. Hence, an agreeable file transfer protocol need to be established.
Viewers will learn how to properly install Eclipse with the necessary JDK, and will take a look at an introductory Java program. Download Eclipse installation zip file: Extract files from zip file: Download and install JDK 8: Open Eclipse and …
Loops Section Overview

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question