PHP User based Data Edit and Delete Using YII

Question

I am working on PHP YII (Version 1.15) User management application.

My Scenario: A user can be assigned as supervisor and there are 'n' numbers of subordinates can assign to the user. Likewise, there are many supervisor available in the application. All users details falls in one table.

Objective: I want to give access to the supervisor to Edit and Delete only to the assigned subordinates. Other users data, he can't able to modify.

What I Tried: I am validating the call everytime before the supervisor clicks the edit button of the subordinates. (I have many forms, so have to use the code many places repeatedly)

Please help me to solve this issue.

score 0 · Answer 1 · answered Oct 14 '14 at 12:12

0

Is it possible for you to add some column to your user table?

If it's possible, you should add one column in your user table that indicates the user's supervisor. It can contain the supervisor ID. Supervisors have null value for this column, so this column should be nullable. You can use the value of this column to validate supervisor's access to Edit and Delete by matching the ID of supervisor with this column's value.

answered Oct 14 '14 at 12:12

MCRmy

31
1
7

yes. This is general procedure. This method consumes more repeated codes. Want something more in detail. – Akilan Oct 14 '14 at 12:34
Your issue is not clear. You don't want to edit all the forms? – nazim Oct 15 '14 at 02:59

PHP User based Data Edit and Delete Using YII

1 Answers1