Again, without all the typo's :) Have a look at ACLs [1] or Voters [2]. I think that should get you some basics on what's possible. And if you have specific questions about using them, I think you have better changes on symfony mailing list ([email protected]).
[1]: http://symfony.com/doc/current/cookbook/security/acl.html [2]: http://symfony.com/doc/current/cookbook/security/voters_data_permission.html -- Jasper N. Brouwer (@jaspernbrouwer) On 14 May 2014 at 11:05:31, Jasper N. Brouwer ([email protected]) wrote: > Have a look at ACls [1] or Voters [2]. I think that should get you some > basics on what's possibel. > And if you have specific question about using them, I think you have better > changes on > symfony mailing list ([email protected]). > > [1]: http://symfony.com/doc/current/cookbook/security/acl.html > [2]: > http://symfony.com/doc/current/cookbook/security/voters_data_permission.html > > -- > Jasper N. Brouwer > (@jaspernbrouwer) > > > On 14 May 2014 at 10:49:11, Edi Buslovich ([email protected]) wrote: > > I'm actually using symfony but this is a pure DB issue. > > Maybe you can point me to any best practices regarding this issue? because > > it's a pretty common problem, but i didn't manage to find any good solution > > for that. > > Currently I have my own developed ORM and I make JOINs with the users table > > on every action that I make in any table, to make sure that the AP request > > is not exposing records of other users. > > > > Thanks, > > Edi. -- You received this message because you are subscribed to the Google Groups "doctrine-user" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/doctrine-user. For more options, visit https://groups.google.com/d/optout.
