At 10:20 PM -0700 3/10/08, Mike wrote:
Wait, what?
You are defining user role ids as MD5 hashes of UUIDs created from
random numbers that change on every request?
Am I missing something or is this completely insane advice?
Mike:
What you're missing is that it doesn't matter. Each session g
On Tue, Mar 11, 2008 at 10:42 AM, Philip Thompson
<[EMAIL PROTECTED]> wrote:
> I do understand the security aspect though. It's like a password that
> changes quite frequently - it would be, for all intensive purposes,
> impossible to guess.
Very similar, yes. You've got the idea.
> Oh,
On Mar 11, 2008, at 10:42 AM, Philip Thompson wrote:
On Mar 11, 2008, at 12:20 AM, Mike wrote:
Wait, what?
You are defining user role ids as MD5 hashes of UUIDs created from
random numbers that change on every request?
Am I missing something or is this completely insane advice?
I'm pro
On Mar 11, 2008, at 12:20 AM, Mike wrote:
Wait, what?
You are defining user role ids as MD5 hashes of UUIDs created from
random numbers that change on every request?
Am I missing something or is this completely insane advice?
I'm probably wrong on this, but I think the point is that it do
On Tue, Mar 11, 2008 at 3:21 AM, Per Jessen <[EMAIL PROTECTED]> wrote:
> Eric Butera wrote:
>
> >
> > Read up on "ACL's."
> >
>
> Apart from Zend which you've mentiond below, is there anything in/for
> PHP that will help implement ACLs for a PHP application?
>
>
> > http://en.wikipedia.org/wi
Eric Butera wrote:
>
> Read up on "ACL's."
>
Apart from Zend which you've mentiond below, is there anything in/for
PHP that will help implement ACLs for a PHP application?
> http://en.wikipedia.org/wiki/Access_control_list
> http://framework.zend.com/manual/en/zend.acl.html
Does anyone use t
Wait, what?
You are defining user role ids as MD5 hashes of UUIDs created from
random numbers that change on every request?
Am I missing something or is this completely insane advice?
On Mar 10, 2008, at 1:07 PM, tedd wrote:
At 3:14 PM -0400 3/10/08, Daniel Brown wrote:
On Mon, Mar 10, 200
On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]> wrote:
> Hi Everyone, Happy Monday to all of you!
>
> I am trying to think through a user management issue for a application
> I am working on. What I want to do, is be able to provide a multi user
> environment (All accessing the
On Mon, Mar 10, 2008 at 4:07 PM, tedd <[EMAIL PROTECTED]> wrote:
> At 3:14 PM -0400 3/10/08, Daniel Brown wrote:
> >On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]> wrote:
> >
>
> >> What I was thinking about doing was a combination of the company name
> >> (Which I set right
At 4:13 PM -0400 3/10/08, Jason Pruim wrote:
On Mar 10, 2008, at 4:07 PM, tedd wrote:
define("ADMIN", md5(uniqid(rand(), true)););
define("GENERAL_USER", md5(uniqid(rand(), true)););
define("LEVEL_ONE_USER", md5(uniqid(rand(), true)););
define("LEVEL_TWO_USER", md5(uniqid(rand(), true)););
defi
On Mon, Mar 10, 2008 at 4:07 PM, tedd <[EMAIL PROTECTED]> wrote:
> At 3:14 PM -0400 3/10/08, Daniel Brown wrote:
> > The superuser (AKA root, administrator, God, whatever) has GID 0,
> >just like on a *NIX system. This is because it's the highest level
> >you can reach, and 0 is the lowest
On Mar 10, 2008, at 4:07 PM, tedd wrote:
At 3:14 PM -0400 3/10/08, Daniel Brown wrote:
On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]>
wrote:
What I was thinking about doing was a combination of the company
name
(Which I set right now) and then a access level such as "5
At 3:14 PM -0400 3/10/08, Daniel Brown wrote:
On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]> wrote:
What I was thinking about doing was a combination of the company name
(Which I set right now) and then a access level such as "50" for the
"Owner" of the program, "40" for
On Mar 10, 2008, at 3:14 PM, Daniel Brown wrote:
On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]>
wrote:
Hi Everyone, Happy Monday to all of you!
I am trying to think through a user management issue for a
application
I am working on. What I want to do, is be able to provide
Pruim" <[EMAIL PROTECTED]>
Cc: "[php] PHP General List"
Date: Mon, 10 Mar 2008 15:14:05 -0400
Subject: Re: [PHP] Question about user management...
On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]>
wrote:
Hi Everyone, Happy Monday to all of you!
I am t
"Jason Pruim" <[EMAIL PROTECTED]>
Cc: "[php] PHP General List"
Date: Mon, 10 Mar 2008 15:14:05 -0400
Subject: Re: [PHP] Question about user management...
> On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]> wrote:
> > Hi Everyone, Happy Monday
On Mon, Mar 10, 2008 at 3:08 PM, Jason Pruim <[EMAIL PROTECTED]> wrote:
> Hi Everyone, Happy Monday to all of you!
>
> I am trying to think through a user management issue for a application
> I am working on. What I want to do, is be able to provide a multi user
> environment (All accessing the
Hi Everyone, Happy Monday to all of you!
I am trying to think through a user management issue for a application
I am working on. What I want to do, is be able to provide a multi user
environment (All accessing the same page, but depending on company
name they get different data) and be able
18 matches
Mail list logo
