This query looks good to me, so long as you are storing the currently logged in users id in a session variable called id then this should work. You would set this variable in your authenticate user server behavior on the login page. I did not see any attachments to your last post. If you are still having trouble with this please post back with a copy of the login page.