On 4/3/06, Alain Roger <raf.news@xxxxxxxxx> wrote: > ok, but how to make a non-logged user executes some stored procedures or > Queries ? > MySQL will need some login and password for that. > > so, that's why i've asked such question...how and where to store this > non-logged user's info (login, password) to not make physical user type them > ? (this must be secured enough) A config file: <?php define('DB_USER', 'xxx'); ...... ?> You don't want to make your users know your database details! > On 4/3/06, Ligaya Turmelle <lig@xxxxxxxxxx> wrote: > > > > > > > For that i was thinking to use session and register his login and > > password > > > as session variable. > > > > > What do you think about that ? > > > > > I personally would only hold a password for as long as it is needed to > > log them in. Then I'd set a session var that they have logged in and > > another session var for their level of access. > > > > But that's me. > > > > > > -- > > > > life is a game... so have fun. > > > > > > > > -- Postgresql & php tutorials http://www.designmagick.com/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php