I'm currently working on a website which will have many users on it. These users are stored in a table with each having a unique id. The website will contain projects that the users can complete and these projects are stored in a separate table with unique id's as well.
I need to make the users have a page they can view which will display a list of all the projects they are currently working on.
To do this, I am going to set up another table in which each row will have the user's id as well as the project's id that they are working on. All of that will work alright but I would like to allow users to cancel their projects if they please. I am aware of how to do this, but I have read that deleting rows directly from a php script is insecure so the user used to access the database from PHP does not have 'DELETE' permissions.
I am wondering if I should just delete rows at will when a user specifies which project to delete or if I should just have another field and simply mark each user-project row as being 'cancelled' in another field so I can work with them myself.
我应该使用用户可以运行的PHP脚本删除MySQL条目吗?
- 写回答
- 好问题 0 提建议
- 追加酬金
- 关注问题
分享- 邀请回答
-
2条回答 默认 最新
- dongyan7950 2013-07-24 16:45关注
What you should do is, for maximum security is, have a parameter in the database table called "isActive", or something of that nature, that is a BIT data type to represent a boolean. If that boolean is false, then do not delete the project from the database, simply hide that tables data (do not display it on the site, but keep the data stored in the databse). That way, not only is your database secure from malicious users who would like to destroy data, but projects can also be "re-instated" if they wish to re-instate it. If the project sits around for a certain period of time, say, 14 days, just have the server delete it, not the user, if you wish. This worked for me in the past.
Hope This Helps!
本回答被题主选为最佳回答 , 对您是否有帮助呢?解决 无用评论 打赏举报 分享
- 2013-07-24 16:37回答 2 已采纳 What you should do is, for maximum security is, have a parameter in the database table called "isA
- 2015-03-07 12:34回答 1 已采纳 PHP script to create MySQL database, add user and grant privileges. ## make sure you connect firs
- 2020-11-19 11:51回答 2 已采纳 软件制作的客户端语言中没有PHP,所以客户端一定是不能用PHP实现的,至于服务端PHP当然可以
- 2021-04-24 16:02郭晨野的博客 New link – results off by 1我需要在一个表格中回显给定日期每小时的条目数,即使它们是0.这似乎正在发生,但是以一种奇怪的方式…正如你所看到的,小时列不是在玩球这应该是0:00-1 …. 22.00-23.00等.预期的结果...
- 2018-07-30 23:01回答 1 已采纳 since the php file is responsible for connect to the database and look for use validation java doe
- 2022-09-18 17:04回答 1 已采纳 更改数据库charset 为utf8mb4https://blog.csdn.net/weixin_42489252/article/details/113555405
- 2019-07-06 21:58回答 1 已采纳 What you describe will not work. While PHP does have the ability to create a TCP server, a proxy s
- 2020-07-01 09:56cuxiong8996的博客 在“ 使用PHP构建自定义搜索引擎 ”中,我结合了PHP和开放源代码Sphinx搜索引擎,以创建一种快速替代文本密集型数据库查询的替代方法,例如LIKE ,对于MySQL, MATCH 。 (请参阅相关主题的狮身人面像相关的信息。)...
- 2018-04-20 12:21回答 3 已采纳 Granting the user that runs PHP/web server permissions to restart any service is generally a bed i
- 2017-02-28 21:28回答 2 已采纳 Here is another approach. It uses redirection to output the results and then file_get_contents() t
- 2016-09-23 11:30回答 1 已采纳 In php you can easely run bash/shell commands instead of having a cron that run every hour. Just e
- 2020-06-18 18:56cuyi7076的博客 读者应该熟悉基本PHP代码,并且能够使用Windows命令提示符来遵循本教程。 还需要具有数据库管理系统和SQL语言方面的经验。 在本教程结束时,您将学习如何创建利用pureXML数据库的面向对象PHP Web应用程序。 关于...
- 2022-10-11 10:47回答 1 已采纳
- 2018-07-26 19:26SongpingWang的博客 一、Spark 大数据分析框架 1.1 数据结构 1.2 SQL语句简介 ...二、搜狗实验室(用户查询日志)数据分析 ...在Hive中使用CTAS方式创建临时结果表–方便...使用Python脚本处理Hive表中数据 一、Spar...
- 2020-07-03 09:06cuxiong8996的博客 在这里,我并不是以“以这种方式而不是在数据库中进行操作”的思路来提供这种想法,而是作为一种设计替代方案,您可以选择使用或不使用。 显然,没有架构,因为我们没有使用数据库。 因此,我从包装上面示例中使用...
- 没有解决我的问题, 去提问
悬赏问题
- ¥15 制裁名单20240508芯片厂商
- ¥20 易康econgnition精度验证
- ¥15 线程问题判断多次进入
- ¥15 msix packaging tool打包问题
- ¥28 微信小程序开发页面布局没问题,真机调试的时候页面布局就乱了
- ¥15 python的qt5界面
- ¥15 无线电能传输系统MATLAB仿真问题
- ¥50 如何用脚本实现输入法的热键设置
- ¥20 我想使用一些网络协议或者部分协议也行,主要想实现类似于traceroute的一定步长内的路由拓扑功能
- ¥30 深度学习,前后端连接