#1 2015-07-10 20:38:46

esmondb
Member
From: London
Registered: 2010-07-20
Posts: 299

User security

I'm using mORMot with sqlite and the default authentication using TSQLAuthUser.

I've created a parallel table to store extended user details like contact details etc. What's the best way to protect this table so that a user can only view and update their own record? Or would it be easier to extend TSQLAuthUser and use a service to access this user record?

Offline

#2 2015-07-11 06:34:59

ab
Administrator
From: France
Registered: 2010-06-21
Posts: 14,663
Website

Re: User security

Set the proper rights in a TSQLAuthGroup for this extended user table.

See http://synopse.info/files/html/Synopse% … l#TITL_139

Offline

#3 2015-07-21 15:24:28

esmondb
Member
From: London
Registered: 2010-07-20
Posts: 299

Re: User security

Many thanks. I think a need to create a service.

Offline

Board footer

Powered by FluxBB