multi-user access
I am looking for some ideas how to setup multi-user access in a php/mysql application.
My application has a few 'classes' of users:
1) Admins
a) master admin (total access)
b) subadmins (variable access)
2) Customers
a) account creator (master)
b) sub-admins created by master admin
3) Members
Customer and Members will login using the same form, and the admins will have a separate login area.
How should I go about assigning permissions to users and pages?
For example: A customer may setup sub-admins to administer certain sections of the web panel, but not have access to others. I have a page where someone can create a subadmin, give them a username and password.
I was thinking of using checkboxes to denote access to a certain area. My question is - how should I store that info? As letter flags?
billing=b
tickets=t
Accessrights='bt' (billing and ticket access)
How about using Adminmod-style access rights, similar to unix permissions?
billing=1
tickets=2
memberadd=4
somethingelse=8
Any thoughts?
