I am urgently needing to implement a modification to ensure that users can only modify their own links. I am about to install and implement the fully functional site. My present site navigation directs people through the user log-in page before they reach the 'add' and 'modify' pages.
I would like to be able to do the following:
1. Ensure that only registered users can add links- and record which user the link belongs to.
2. Allow the logged-in user to search for a list of links that belong to them (Titles and dates only) and select which link to modify. (repeating this stage as often as necessary.
3. Ensure that no-one can modify links that do not belong to them.
I have thought about the following modifications:
1. Having the logged-in user's username entered into hidden fields within the 'add' form and stored with the link record.
2a. Having the logged-in user's username entered into hidden fields within a 'search' type form.
2b. Having a search results page with (Titles and Dates) of the links belonging to that user- which can be selected using a radio box. or similar?
2c. These hyperlinks (2b) lead to a 'modify' form which again records the username via hidden fields.
2d. Stages 2a-2c can be repeated as often as required until all records are modified.
Obviously all this is a lot of work- so if someone could tell me how to make the username field appear in a hidden field, I can also work on a solution.
Lots of questions for a Saturday morning from here in snowy Scotland.
Thanks for taking a look at my message.
Rennie
[This message has been edited by lcnl (edited December 04, 1999).]
I would like to be able to do the following:
1. Ensure that only registered users can add links- and record which user the link belongs to.
2. Allow the logged-in user to search for a list of links that belong to them (Titles and dates only) and select which link to modify. (repeating this stage as often as necessary.
3. Ensure that no-one can modify links that do not belong to them.
I have thought about the following modifications:
1. Having the logged-in user's username entered into hidden fields within the 'add' form and stored with the link record.
2a. Having the logged-in user's username entered into hidden fields within a 'search' type form.
2b. Having a search results page with (Titles and Dates) of the links belonging to that user- which can be selected using a radio box. or similar?
2c. These hyperlinks (2b) lead to a 'modify' form which again records the username via hidden fields.
2d. Stages 2a-2c can be repeated as often as required until all records are modified.
Obviously all this is a lot of work- so if someone could tell me how to make the username field appear in a hidden field, I can also work on a solution.
Lots of questions for a Saturday morning from here in snowy Scotland.
Thanks for taking a look at my message.
Rennie
[This message has been edited by lcnl (edited December 04, 1999).]