Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17


Multiple client's directories management in an Application Service Provider model

Posted on 2007-04-10
Medium Priority
Last Modified: 2013-11-13
I need web-based, platform independent application that implements Application Service Provider (ASP) model.
It will be developed using PHP. I am looking for an open source resource that provides the mechanism on how to manage the multiple client's directories in the application.

Thank you very much.
Question by:llping8
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 6
  • 2
LVL 11

Expert Comment

ID: 18887356
Since PHP is not platform independent, that would be difficult. Could you elaborate on what an Application Service Provider model is? Does the client have multiple directories or are there multiple clients whom each have a directory? Where is the directory located, locally on their computer or on a server?

Author Comment

ID: 18887828
Lets assume it is on a Linux server. As I know, Application Service Provider (ASP) model a.k.a. "Software as a service".
There is a server with an application. The application provides service to clients. Basically each client will have their own directory (basically is ONE directory for each client). When a client sign in, he will only able to access his data in his own directory. There is only one application running.

My question is how does PHP  manage the client access? After a client sign in, how PHP can prevent him/her from accessing other client's directory.

Author Comment

ID: 18887832
The client's directory is in the server where the application resides.
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.


Author Comment

ID: 18888240
Additionally, each client will have his/her own database (MySQL) space to store data. So, when a client sign in, only the respective file directory & database is available for access.
LVL 11

Accepted Solution

walkerke earned 1000 total points
ID: 18894684
This is really beyond my expertise, so I hope someone else will contribute.

My own approach to this would be to use PHP's rich file system features to do all the file management. I would assign a unique identifier code to each user and begin each folder and file name with that code, but mask out the code when presenting the directory tree to the client's browser. I would embed a safeguard within the PHP application which prevents the client from maneuvering to a folder or accessing a file that does not being with the same code as the one they are maneuvering from. I would also implement a PHP session and tie the session id to the client id.

MySQL's own security features will prevent one user from accessing another user's data unless they are specifically given access to it.

Author Comment

ID: 18894979
Thank you, walkerke. I appreciate your input. I will search other resources as well.

Author Comment

ID: 18896452

I am googling & yahooing all the while, and only thing that i can think of is the mechanism used in some web content management system. I am wondering, how are those CMS manage so many users directory without letting users view other user's content. Are they open new directory for a new user? I tried to install Mambo in my localhost to do some research.

Author Comment

ID: 18896716
I guess I was wrong about CMS. Each CMS only manage ONE website. With multiple manager can access. But basically they are managing the same site with differrent level of access.  It is a different story.

Featured Post

The top UI technologies you need to be aware of

An important part of the job as a front-end developer is to stay up to date and in contact with new tools, trends and workflows. That’s why you cannot miss this upcoming webinar to explore the latest trends in UI technologies!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Today, the web development industry is booming, and many people consider it to be their vocation. The question you may be asking yourself is – how do I become a web developer?
This article discusses how to implement server side field validation and display customized error messages to the client.
Use Wufoo, an online form creation tool, to make powerful forms. Learn how to choose which pages of your form are visible to your users based on their inputs. The page rules feature provides you with an opportunity to create if:then statements for y…
In this fifth video of the Xpdf series, we discuss and demonstrate the PDFdetach utility, which is able to list and, more importantly, extract attachments that are embedded in PDF files. It does this via a command line interface, making it suitable …

715 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question