SitePoint Sponsor

User Tag List

Results 1 to 3 of 3
  1. #1
    SitePoint Enthusiast
    Join Date
    Mar 2011
    Posts
    28
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    database user verification question

    I've never worked with databases before.

    Generally, is it better to GRANT each person registered to your site some basic privileges and when they log in connect to the database with their login/password, or else is it better to use the same login and password for each user using an account with broader database privileges (but not full privileges), and just verify users by querying a table using the login and password information they logged in with???

    Which is more efficient?

    Is there major problems with either situation?

    Also, what is the general process for validating a users' login and password, with specifics if you can. Do you query a large table of different users looking for a login and password match??



    Thanks, G

  2. #2
    SitePoint Wizard cranial-bore's Avatar
    Join Date
    Jan 2002
    Location
    Australia
    Posts
    2,634
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Are you asking about granting actual MySQL user account rights to specific users of your site?
    If so that's to be avoided. Your PHP scripts will login to MySQL, but not on a user by user basis. Your end users need no direct access to MySQL.

    As for them logging into your website they should each have individual logins and your application logic controls what they can do.

  3. #3
    SitePoint Enthusiast
    Join Date
    Mar 2011
    Posts
    28
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    ok, thanks i think i understand.


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •