+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Archived Discussions (https://forum.codeigniter.com/forumdisplay.php?fid=20)
+--- Forum: Archived Development & Programming (https://forum.codeigniter.com/forumdisplay.php?fid=23)
+--- Thread: Session Issue (/showthread.php?tid=42324)
Session Issue - El Forum - 06-03-2011
[eluser]Wondering Coder[/eluser]
I have an issue in using session.
First of all I'm using DB session in CI and I have 2 panels which are the client/user panel and admin panel. Now my scenario is when I am currently logged in my client panel then try to go to my admin panel without logging out first in my client panel. I am able to view the content of my admin panel using the session cookie of the client user.
Code:
public function is_logged_in()
{
$is_logged_in = $this->session->userdata('is_logged_in');
if(!isset($is_logged_in) || $is_logged_in != true)
{
echo 'You don\'t have permission to access this page. <a href="../">Login</a>';
die();
}
}Any idea on how to solve this? or secure my application.
Session Issue - El Forum - 06-03-2011
[eluser]guidorossi[/eluser]
You will need different users groups like:
Group 1 for users
Group 2 for mods
Group 3 for admins
in a "gropus" table
and then
Code:
if(!$is_logged_in || $user_group < 2)
{
// not allowed
}