Script question?

Anon

Hi there,
What would be the best way to do the following.
I have a login area where both clients and admin staff can access different protected areas of the site...eg. the clients has access to the member.php page and the admin staff have access to that page and a few more.
I currently have the usernames and passwords for both clients and admin staff within the same fields of the database.
Any ideas on how best to achieve this?

Cheers,
micmac

bretticus

Sure!

create a permissions field in your table. You can set different small integer values according to permission level.

When a user logs in, set a session variable equal to that value from the permissions field.

Now write a include (or function or just plain old code) at the top of each page, where you set a permission variable for that page and test it against the session permission varibale for that perticular user. If the test fails use header() to redirect them to the menu (or wherever)

This is a pretty basic method but there's lots of room for elaboration.

Anon

Could you leed me to any tutorials?