Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming Encrypting URI Segments
Encrypting URI Segments
  • El Forum
    Guest
  •  
#3
03-17-2012, 01:16 PM

[eluser]dblackherod[/eluser]
i just realized that:

controller/users which lists all users for admin group can be accessed by a less privileged user who should only be able to edit his/her profile via controller/users/id/7 by simply traversing the url to read controller/users.

one might argue that this is a design approach error and a simple method call in the controller's constructor to check whether the logged in user is a member of an authorized group should sort this out but NO!

what happens when the same controller needs to be accessed by both groups but the functionalities for both groups should be isolated? i.e. controller/settings/others can be sccessed by every group but controller/settings should not.

besides the controllers to be edited are so many all that refactoring is too much work compared to fixing up a brilliantly simple library and helpers to obfuscate the uri segments


Messages In This Thread
Encrypting URI Segments - by El Forum - 03-15-2012, 11:41 AM
Encrypting URI Segments - by El Forum - 03-17-2012, 12:30 AM
Encrypting URI Segments - by El Forum - 03-17-2012, 01:16 PM
Encrypting URI Segments - by El Forum - 03-17-2012, 01:51 PM
Encrypting URI Segments - by El Forum - 03-17-2012, 02:40 PM
Encrypting URI Segments - by El Forum - 03-19-2012, 02:17 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 02:58 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 03:01 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 04:30 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 07:08 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 09:12 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 09:14 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 09:29 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 10:59 AM
Encrypting URI Segments - by El Forum - 03-19-2012, 12:18 PM
Encrypting URI Segments - by El Forum - 03-19-2012, 08:43 PM
Encrypting URI Segments - by El Forum - 03-19-2012, 09:29 PM
Encrypting URI Segments - by El Forum - 03-19-2012, 09:42 PM
Encrypting URI Segments - by El Forum - 03-20-2012, 01:11 AM
Encrypting URI Segments - by El Forum - 03-20-2012, 09:44 AM
Encrypting URI Segments - by El Forum - 03-20-2012, 03:23 PM
Encrypting URI Segments - by El Forum - 03-20-2012, 03:32 PM
Encrypting URI Segments - by El Forum - 03-20-2012, 05:06 PM
Encrypting URI Segments - by El Forum - 03-21-2012, 08:01 AM
Encrypting URI Segments - by El Forum - 03-26-2012, 01:36 PM
Encrypting URI Segments - by El Forum - 10-03-2012, 10:10 AM



Theme © iAndrew 2016 - Forum software by © MyBB