Permisson system

Anon

Currently I have a system where users log in using sessions to access a "secure" section of my site. Now I have discovered that I need to limit certain pages to certain users only i.e. some kind of file-permission system.

At the moment all users are in a database and I'm thinking about just adding a field in where the user's rights are entered. For example a level from 1-5 where 5 is the highest level. On every page I then have to define its security-level and compare with the logged in user's level.

I wonder if this is a resonable way to go or if there are some huge setbacks which I do not see at the moment. One bad thing is if I for example discover in a year or two that I need additional levels or something...

Any ideas?
/G

djg_uk

Hi,

This seems like a reasonable way to do things (I've done the same for a corporate client), as it is easy to implement and not impossible to change if necessary.

Regards,

David