Jump to content


Detail view security for dataset

Security paging detail view

  • Please log in to reply
No replies to this topic

#1 kohg

kohg

    Newbie

  • Members
  • Pip
  • 1 posts

Posted 03 April 2019 - 02:59 PM

Have a database with different users and corresponding associated records.
1. user logs in and gets a Session-ID
2nd user gets his data from the query: "$crud->where('marketing_user_id',$this->session->userdata('id'));" displayed.

Problem is, if user clicks on the detail view he can change the URL by hand... e.g. from "read/21" he makes "read/22", "read/33" and so on.

How can I add security to the detail view? Probably with a CallBack? Unfortunately I can't do it.

Thanks a lot :-)

 

 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users