Security Assist
can you use Security Assist to overcome the following problem?
I have created a page that a user has to logon and by using URL parameter will navigate through pages and check/add/update/delete different fields that belong to this specific user (by using the UserID field)
UpdateBanner.php?UserID=<?php echo $row_WAATKusers['UserID'];?>
The problem I have is that if a user has ID 2 (UpdateBanner.php?UserID=2)
if this user type (UpdateBanner.php?UserID=3) on the address bar he/she will have access on the next record so he/she will be able to make changes on someone else’s record.
Can you please let me know if it is possible to overcome this issue? And how?
thanks