Jul 17, 2005
I have a project for work, and I'm not sure how to efficiently do what I
View 2 Replies
need to do. I'm hoping someone out there can help.
Project is this: I'm creating a web-based interface where people at my
company (operators) can enter data for service calls. All data entered
is run thru one or more PHP scripts for error checking and then stored
in a MySQL database on a server here in the office.
What I'm looking to do is to limit access to certain operators so they
can only do certain functions (ex: add a service call, but not delete
one), whereas admins such as myself would have full access to
everything. Ideally, at some point in the future, we plan to roll this
interface out to our clients so they may do the same features within
their company. Obviously, they would only gain access to data related
to their company, as to protect the privacy of others.
Hierarchy would be something like this:
1. UberAdmins (such as myself)
-Have access to everything and to all commands.
-Have access to everything, but not all commands.
3. Our clients
-Have access to their data only, and to all commands.
4. Our clients' operators
-Have access to their data only, but not all commands.
The difficult thing is that our clients may run several businesses, so
they would have to have access to several groups. In essence, they'd
have multiple groups (their businesses) within a group (their group)
within a group (everything).
What is the easiest and most secure way to do something like this? I'm
not looking for actual code but merely suggestions. Please reply if
there is something I wasn't clear on.