I guess the easiest way to do this would be to index all transactions with a user id number or something identifying the user. When they log in to the site have the scripts only access the records for that person using a WHERE clause in the queries. You would have to be able to keep track of their user id for them via cookies or sessions or something though.
Ed Curtis On Tue, 9 Mar 2004, Mulugeta Maru wrote: > Thank you for the kind response. May be I did not clearly ask the question. > The user table in mysql database is used to set-up a user and password. Once > I set-up my tables (customer, customer orders, customer order details, etc) > in say abc database what will I have to do to make sure when customer A logs > in to the database can only see his/her account, orders, order details > without getting access to other customer accounts. > > I hope my question is clear. > > Maru > ----- Original Message ----- > From: "Paul Rigor" <[EMAIL PROTECTED]> > To: "Mulugeta Maru" <[EMAIL PROTECTED]>; "MySQL" <[EMAIL PROTECTED]> > Sent: Tuesday, March 09, 2004 7:46 PM > Subject: Re: Security > > > > Heya, > > > > Those are the default databases that comes with the setup. the "mysql" > > database holds info on mysql accounts. the "test" is an empty > > database. You should create a new database "CREATE DATABASE customers" > > then "use customers"... after that... you can setup the tables you > mentioned. > > > > Goodluck! > > Paul > > > > At 06:34 PM 3/9/2004, Mulugeta Maru wrote: > > >I have used access in the past and now I have started using MySQL. I have > > >customer table, customer order table, customer order detail table. How > > >would I make sure that when a particular customer log-in he/she sees only > > >the account that is set-up for them. What confused me is that MySQL has a > > >database called mysql and a table in this database called users that is > > >used to set a user name and password for each user. I could not figure > out > > >how a user in my case a customer that has access to a customer table > could > > >be restricted to see his/her transaction only. > > > > > >Any insight is very much appreciated. > > > > _________ > > Paul Rigor > > [EMAIL PROTECTED] > > Go Bruins! > > > > > > -- > > MySQL General Mailing List > > For list archives: http://lists.mysql.com/mysql > > To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] > > > > > > > -- > MySQL General Mailing List > For list archives: http://lists.mysql.com/mysql > To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED] > -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/[EMAIL PROTECTED]
