Hello, I would like to have an updatable view that only shows the records in a table that have been created by the current user. By restricting regular users to this view (rather than the underlying table) they could only look at and modify their own data; more privileged users could look at anyone's data.
Something like this seems to work: CREATE SQL SECURITY INVOKER VIEW `sessionviewbyuser` AS select `session`.`sessionid` AS `sessionid`, `session`.`Folder` AS `Folder`, `session`.`User` AS `User`, `session`.`Path` AS `Path`, `session`.`IP` AS `IP` from `session` where (`session`.`User` = SUBSTRING_INDEX(USER(),'@',1); Is this a reasonable approach? Are there any potential gotchas? Are their better ways to achieve this? With many thanks for any suggestions/pointers, Greg. -- Gregory Jefferis, PhD Division of Neurobiology MRC Laboratory of Molecular Biology, Hills Road, Cambridge, CB2 0QH, UK. http://www2.mrc-lmb.cam.ac.uk/group-leaders/h-to-m/g-jefferis http://www.neuroscience.cam.ac.uk/directory/profile.php?gsxej2 http://flybrain.stanford.edu -- MySQL General Mailing List For list archives: http://lists.mysql.com/mysql To unsubscribe: http://lists.mysql.com/mysql?unsub=arch...@jab.org