Each role in the system is going to need different tables. To improve security it would be good to restrict the roles to only have access to certain tables, rather than depend on only the controller to enforce this kind of database access. This is useful when trying to make sure there are no SQL injections or other features that could attack the database and aquire or destroy certain data. BR, Jason Brower
On Fri, May 15, 2015 at 12:37 PM Anthony <abasta...@gmail.com> wrote: > The Auth records are in the database, but you don't have to give users any > direct access to the Auth tables (there is none by default). Can you > explain your requirements in more detail? > > Anthony > > -- > Resources: > - http://web2py.com > - http://web2py.com/book (Documentation) > - http://github.com/web2py/web2py (Source code) > - https://code.google.com/p/web2py/issues/list (Report Issues) > --- > You received this message because you are subscribed to the Google Groups > "web2py-users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to web2py+unsubscr...@googlegroups.com. > For more options, visit https://groups.google.com/d/optout. > -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.