PHP User Permissions
I am working on a complete overhaul of our corporate intranet, and I'm looking for guidance regarding setting up user permissions.
Currently, we have about 65 applications, 350 users nationwide, and functions within each application.
Not all users have access to all applications, and if an employee does have access to an application, they may not have access to all functions within.
My line of thinking right now is this:
- Assign each application a unique Id.
- Assign each user permissions to the application ID's that they would need.
- Create a functions table that would hold function names, such as canEdit, canConvert, canDelete, etc.
- Assign each user access to the functions they would need by either a 1 or a 0 value in the database table.
There clearly isn't a right or wrong answer to this, but I wanted to consult with an expert to get their opinion on my issue, as the articles I've read on the subject do not really clarify how many users or functions they are dealing with.
Thanks in advance!
Currently, we have about 65 applications, 350 users nationwide, and functions within each application.
Not all users have access to all applications, and if an employee does have access to an application, they may not have access to all functions within.
My line of thinking right now is this:
- Assign each application a unique Id.
- Assign each user permissions to the application ID's that they would need.
- Create a functions table that would hold function names, such as canEdit, canConvert, canDelete, etc.
- Assign each user access to the functions they would need by either a 1 or a 0 value in the database table.
There clearly isn't a right or wrong answer to this, but I wanted to consult with an expert to get their opinion on my issue, as the articles I've read on the subject do not really clarify how many users or functions they are dealing with.
Thanks in advance!
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
+1 for PDO! Thanks for the points and thanks for using EE, ~Ray
And just a note for going forward... You can choose up to three Zones when you post a question, so you can get a little more intellectual cross-pollination that way.
And just a note for going forward... You can choose up to three Zones when you post a question, so you can get a little more intellectual cross-pollination that way.
ASKER
As a side note, you'll be pleased to know that my new revision of this corporate intranet will be utilizing PDO!