I'd like to grant options based on classes of employee (analagous to Netware
Groups) instead of individuals in a high-turnover organization.
I'm considering using a table to track users by name (full), username, and
password. In the same table I could use a group code that would FK to a
Groups table.
In the groups table I want to have a user name I can set as a variable for
the USER password (SET USER .vuserid .vpassword). Further, I could check
the entered userid against the system variable from the NOS for user (i.e.,
Nuser) to see if who you said you were at login is who you are trying to be
in the database.
My reasoning is based on two considerations:
1. I need to restrict insert and edit to a given class of employee for ALL
tables while letting all others have SELECT rights,
2. I need to provide ensurance under HIPAA (Health Insurance Privacy and
ortability Act) that only authorized personnel have access not only to the
data but to the database functions.
I'm hoping to spare myself another level of administration.
Has anyone tried this,and if so, does/should it work?
tia
Dave
