PHP/Block user access to the system?

[alvin567]

Hi there,

 

I am trying to design a php based access control list for my application,

the idea is to disallow members to access certain functionalities in my systems

 

Filelist(file_id,filename)

Member_Access(member_id,file_access)

Member(member_id,name)

 

Is it a good ideas?

 

The idea is revolved around RBAC,and ACL?

[xyph]

I would use a bit-wise solution, myself.

 

Either each module would be given a static, permanent values of 2^(x), where x is an incrementing integer starting at 0 or 1, or you'd have a set number of access levels, and each module defines the access level needed.

 

A user is given an access level integer that defines their specific access level or which specific modules they have access to.

 

If you provided more details, I might be able to provide a more specific suggestion.

[requinix]

If you have a fairly small number of privileges and know that it can't expand at runtime then bitwise is definitely the easiest solution (though there might be a bit of a learning curve first). Otherwise it's a pain and it's easier managed as a "normal" set of key/value pairs stored somewhere.

[Tarential]

I usually apply permissions to groups and targets, then put users in groups. This can make management easier, but it also adds another layer of complexity to the system.

[alvin567]

Can I ask you:

 

ini_set('display_errors',1);

error_reporting(-1);

 

what does this meants?

[Pikachu2000]

Here you go: clicky!