Login - Two Potential Passwords

[dtyson2000]

I have a quick question...

 

Does it sound reasonable to provide a login form that uses a login name and password where the user enters his/her login name but then has a choice to use one of two passwords.

 

One password would provide access to certain areas of the site while the other password would be limited to a specific page. Client wants to use one username but only allow certain people limited access.

 

Is there a resource that you can point me to or a quick suggestion for a solution?

 

Thanks so much for taking the time to read!

[jcbones]

You could use a separate table for an admin password for a certain user(s) linked by a foreign key. It adds a little bit of security. Of course, you can have a column in the users table that specifies if the users have a certain level of access.

[ManiacDan]

How would you go about doing logging or auditing with two versions of the same user? Why does your client want one username but two users? Why are people sharing usernames to begin with? This whole thing sounds like an unreasonable client asking for something dumb. They pay you to be smart with computers. Tell them when their idea is stupid.

[dtyson2000]

  On 10/8/2012 at 3:06 AM, ManiacDan said:

How would you go about doing logging or auditing with two versions of the same user? Why does your client want one username but two users? Why are people sharing usernames to begin with? This whole thing sounds like an unreasonable client asking for something dumb. They pay you to be smart with computers. Tell them when their idea is stupid.

 

And THIS is the solution...really. You're totally right!