Have a look at ACls [1] or Voters [2]. I think that should get you some basics on what's possibel. And if you have specific question about using them, I think you have better changes on symfony mailing list ([email protected]).
[1]: http://symfony.com/doc/current/cookbook/security/acl.html [2]: http://symfony.com/doc/current/cookbook/security/voters_data_permission.html -- Jasper N. Brouwer (@jaspernbrouwer) On 14 May 2014 at 10:49:11, Edi Buslovich ([email protected]) wrote: > I'm actually using symfony but this is a pure DB issue. > Maybe you can point me to any best practices regarding this issue? because > it's a pretty common problem, but i didn't manage to find any good solution > for that. > Currently I have my own developed ORM and I make JOINs with the users table > on every action that I make in any table, to make sure that the AP request > is not exposing records of other users. > > Thanks, > Edi. -- You received this message because you are subscribed to the Google Groups "doctrine-user" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/doctrine-user. For more options, visit https://groups.google.com/d/optout.
