How to implement hierarchical permission control in PHP7.0?
When developing web applications, it is often necessary to restrict users' access in the system based on their roles and permissions. Hierarchical permission control is a common permission management method. It divides users into different groups based on roles and permissions, and each group can access different content. In PHP7.0, technologies such as Session and MySQL can be used to implement hierarchical permission control.
1. Design the database
In the database, you usually need to create three tables: user table, role table and permission table. The following is the structural design of the three tables:
(1) User table
CREATE TABLE users (
`id` INT(11) NOT NULL AUTO_INCREMENT, `username` VARCHAR(50) NOT NULL, `password` VARCHAR(255) NOT NULL, `email` VARCHAR(100), `role_id` INT(11) NOT NULL, PRIMARY KEY (`id`)
);
(2) Role table
CREATE TABLE roles (
`id` INT(11) NOT NULL AUTO_INCREMENT, `name` VARCHAR(50) NOT NULL, PRIMARY KEY (`id`)
);
(3) Permission table
CREATE TABLE permissions (
`id` INT(11) NOT NULL AUTO_INCREMENT, `name` VARCHAR(50) NOT NULL, `slug` VARCHAR(50) NOT NULL, PRIMARY KEY (`id`)
);
Here, we use three tables, among which the user table and the role table use foreign keys to ensure data consistency.
2. Implement permission control
(1) Login
When logging in, the user's user name and password need to be verified, and the user information is saved in the Session. The following is a piece of PHP code:
session_start();
if($_SERVER['REQUEST_METHOD'] == 'POST') {
$username = $_POST['username'];
$password = $_POST['password'];
$sql = "SELECT * FROM users WHERE username='$username' AND password='$password'";
$result = mysqli_query($conn, $sql);
if(mysqli_num_rows($result) > 0) {
$row = mysqli_fetch_assoc($result);
$_SESSION['user_id'] = $row['id'];
$_SESSION['user_role_id'] = $row['role_id'];
header("Location: dashboard.php");
exit;
} else {
$error = "Invalid email or password";
}}
at After successful login, the user's ID and role ID are stored in the Session for judgment in subsequent visits.
(2) Permission check
In the page that requires permission check, you need to first determine whether the user has logged in and obtain the user's role ID. Then, read the permissions of the role from the database and make a judgment. Here is a piece of PHP code to check if the user has access rights:
session_start();
if(!isset($_SESSION['user_id'])) {
header("Location: login.php");
exit; }
$role_id = $_SESSION['user_role_id'];
$is_allowed = false;
$sql = "SELECT permissions.slug FROM permissions WHERE permissions.id =
(SELECT role_permission.permission_id FROM role_permission WHERE role_permission.role_id = '$role_id')";
$result = mysqli_query($conn, $sql);
$permissions = array ();
while($row = mysqli_fetch_assoc($result)) {
$permissions[] = $row['slug'];
}
if(in_array('view_dashboard', $permissions)) {
$is_allowed = true;
}
if(!$is_allowed) {
header("Location: unauthorized.php");
exit;}
Here, we use a subquery to get the permissions of the role ID, and then use the IN keyword and array to determine whether the role has access rights.
(3) Control access
Through the above permission check, we can already determine whether the user has access permission. If he does not have permission, the user needs to be blocked from access. The following is an implementation method:
(1) In the page where access needs to be controlled, put the above permission check code at the top. If the user does not have access permission, jump directly to the unauthorized page.
(2) If the user has access rights, continue executing the code of the page.
(3) In each link and button that needs to be accessed, the permission slug of the link or button needs to be passed as a parameter, for example:
Here, if the user does not have the permission to add_news, the link will be hidden.
3. Summary
Hierarchical permission control is a common permission management method that can limit users’ access to the system based on their roles and permissions. In PHP7.0, technologies such as Session and MySQL can be used to implement hierarchical permission control. Through the above implementation method, we can implement hierarchical permission control in web applications, ensuring the security and stability of the system.
The above is the detailed content of How to implement hierarchical permission control in PHP7.0?. For more information, please follow other related articles on the PHP Chinese website!
Hot AI Tools
Undress AI Tool
Undress images for free
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Clothoff.io
AI clothes remover
Video Face Swap
Swap faces in any video effortlessly with our completely free AI face swap tool!
Hot Article
Hot Tools
Notepad++7.3.1
Easy-to-use and free code editor
SublimeText3 Chinese version
Chinese version, very easy to use
Zend Studio 13.0.1
Powerful PHP integrated development environment
Dreamweaver CS6
Visual web development tools
SublimeText3 Mac version
God-level code editing software (SublimeText3)
Beyond the LAMP Stack: PHP's Role in Modern Enterprise Architecture
Jul 27, 2025 am 04:31 AM
PHPisstillrelevantinmodernenterpriseenvironments.1.ModernPHP(7.xand8.x)offersperformancegains,stricttyping,JITcompilation,andmodernsyntax,makingitsuitableforlarge-scaleapplications.2.PHPintegrateseffectivelyinhybridarchitectures,servingasanAPIgateway
Object-Relational Mapping (ORM) Performance Tuning in PHP
Jul 29, 2025 am 05:00 AM
Avoid N 1 query problems, reduce the number of database queries by loading associated data in advance; 2. Select only the required fields to avoid loading complete entities to save memory and bandwidth; 3. Use cache strategies reasonably, such as Doctrine's secondary cache or Redis cache high-frequency query results; 4. Optimize the entity life cycle and call clear() regularly to free up memory to prevent memory overflow; 5. Ensure that the database index exists and analyze the generated SQL statements to avoid inefficient queries; 6. Disable automatic change tracking in scenarios where changes are not required, and use arrays or lightweight modes to improve performance. Correct use of ORM requires combining SQL monitoring, caching, batch processing and appropriate optimization to ensure application performance while maintaining development efficiency.
Building Resilient Microservices with PHP and RabbitMQ
Jul 27, 2025 am 04:32 AM
To build a flexible PHP microservice, you need to use RabbitMQ to achieve asynchronous communication, 1. Decouple the service through message queues to avoid cascade failures; 2. Configure persistent queues, persistent messages, release confirmation and manual ACK to ensure reliability; 3. Use exponential backoff retry, TTL and dead letter queue security processing failures; 4. Use tools such as supervisord to protect consumer processes and enable heartbeat mechanisms to ensure service health; and ultimately realize the ability of the system to continuously operate in failures.
python run shell command example
Jul 26, 2025 am 07:50 AM
Use subprocess.run() to safely execute shell commands and capture output. It is recommended to pass parameters in lists to avoid injection risks; 2. When shell characteristics are required, you can set shell=True, but beware of command injection; 3. Use subprocess.Popen to realize real-time output processing; 4. Set check=True to throw exceptions when the command fails; 5. You can directly call chains to obtain output in a simple scenario; you should give priority to subprocess.run() in daily life to avoid using os.system() or deprecated modules. The above methods override the core usage of executing shell commands in Python.
Building Immutable Objects in PHP with Readonly Properties
Jul 30, 2025 am 05:40 AM
ReadonlypropertiesinPHP8.2canonlybeassignedonceintheconstructororatdeclarationandcannotbemodifiedafterward,enforcingimmutabilityatthelanguagelevel.2.Toachievedeepimmutability,wrapmutabletypeslikearraysinArrayObjectorusecustomimmutablecollectionssucha
Creating Production-Ready Docker Environments for PHP
Jul 27, 2025 am 04:32 AM
Using the correct PHP basic image and configuring a secure, performance-optimized Docker environment is the key to achieving production ready. 1. Select php:8.3-fpm-alpine as the basic image to reduce the attack surface and improve performance; 2. Disable dangerous functions through custom php.ini, turn off error display, and enable Opcache and JIT to enhance security and performance; 3. Use Nginx as the reverse proxy to restrict access to sensitive files and correctly forward PHP requests to PHP-FPM; 4. Use multi-stage optimization images to remove development dependencies, and set up non-root users to run containers; 5. Optional Supervisord to manage multiple processes such as cron; 6. Verify that no sensitive information leakage before deployment
VSCode settings.json location
Aug 01, 2025 am 06:12 AM
The settings.json file is located in the user-level or workspace-level path and is used to customize VSCode settings. 1. User-level path: Windows is C:\Users\\AppData\Roaming\Code\User\settings.json, macOS is /Users//Library/ApplicationSupport/Code/User/settings.json, Linux is /home//.config/Code/User/settings.json; 2. Workspace-level path: .vscode/settings in the project root directory
The Serverless Revolution: Deploying Scalable PHP Applications with Bref
Jul 28, 2025 am 04:39 AM
Bref enables PHP developers to build scalable, cost-effective applications without managing servers. 1.Bref brings PHP to AWSLambda by providing an optimized PHP runtime layer, supports PHP8.3 and other versions, and seamlessly integrates with frameworks such as Laravel and Symfony; 2. The deployment steps include: installing Bref using Composer, configuring serverless.yml to define functions and events, such as HTTP endpoints and Artisan commands; 3. Execute serverlessdeploy command to complete the deployment, automatically configure APIGateway and generate access URLs; 4. For Lambda restrictions, Bref provides solutions.
