MySQL: Select Items for a navigation based on binary rights
I've set up a simple rights management, based on binary addition.
Every navigation entry in my database follows this structure:
and so on..
Every user has his own access level..
user = 3 (1+2 - access level) admin = 15 (1+2+4+8)
So far so good. My problem is now, selecting the corresponding fields from the table via MySQL. My first approach was to select all entries with a access_level <= the sum of the users access_level, but very soon I realized that this also includes other pages with a lower access_level.
Solution
You must use a binary AND to see if the Bit is set. you also can use a set field. it is also a bitfield with naming each bit.
AND like this:
WHERE (access_level & 15);
sample - create table and fill
mysql> CREATE TABLE `access_table` (
-> `id` INT(11) UNSIGNED NOT NULL AUTO_INCREMENT,
-> `item_text` VARCHAR(32) DEFAULT NULL,
-> `url` VARCHAR(32) DEFAULT NULL,
-> `access_level` SET('home','help','backend','admin') DEFAULT NULL,
-> PRIMARY KEY (`id`)
-> ) ENGINE=INNODB DEFAULT CHARSET=utf8;
Query OK, 0 rows affected (0,02 sec)
mysql>
mysql> INSERT INTO `access_table` (`id`, `item_text`, `url`, `access_level`)
-> VALUES
-> (1, 'home', '/home', 'home'),
-> (2, 'help', '/help', 'help'),
-> (3, 'backend', '/backend', 'backend'),
-> (4, 'hoadmpage', '/admin', 'admin');
Query OK, 4 rows affected (0,00 sec)
Records: 4 Duplicates: 0 Warnings: 0
mysql>
sample - show all rows and select some via bits
mysql> SELECT *,access_level+0 FROM ACCESS_TABLE;
+----+-----------+----------+--------------+----------------+
| id | item_text | url | access_level | access_level+0 |
+----+-----------+----------+--------------+----------------+
| 1 | home | /home | home | 1 |
| 2 | help | /help | help | 2 |
| 3 | backend | /backend | backend | 4 |
| 4 | hoadmpage | /admin | admin | 8 |
+----+-----------+----------+--------------+----------------+
4 rows in set (0,00 sec)
mysql>
mysql> SELECT *,access_level+0
-> FROM ACCESS_TABLE
-> WHERE (access_level & 15);
+----+-----------+----------+--------------+----------------+
| id | item_text | url | access_level | access_level+0 |
+----+-----------+----------+--------------+----------------+
| 1 | home | /home | home | 1 |
| 2 | help | /help | help | 2 |
| 3 | backend | /backend | backend | 4 |
| 4 | hoadmpage | /admin | admin | 8 |
+----+-----------+----------+--------------+----------------+
4 rows in set (0,00 sec)
mysql> SELECT *,access_level+0
-> FROM ACCESS_TABLE
-> WHERE (access_level & 7);
+----+-----------+----------+--------------+----------------+
| id | item_text | url | access_level | access_level+0 |
+----+-----------+----------+--------------+----------------+
| 1 | home | /home | home | 1 |
| 2 | help | /help | help | 2 |
| 3 | backend | /backend | backend | 4 |
+----+-----------+----------+--------------+----------------+
3 rows in set (0,00 sec)
mysql> SELECT *,access_level+0
-> FROM ACCESS_TABLE
-> WHERE (access_level & 9);
+----+-----------+--------+--------------+----------------+
| id | item_text | url | access_level | access_level+0 |
+----+-----------+--------+--------------+----------------+
| 1 | home | /home | home | 1 |
| 4 | hoadmpage | /admin | admin | 8 |
+----+-----------+--------+--------------+----------------+
2 rows in set (0,00 sec)
mysql>
- Is it a good idea to add UTC timestamp for API authentication
- What is an API token
- Nginx prepends response data with post request body content from its' buffer?
- Swap two key/value pairs in an array
- view path not found
- What does the & sign before the parameter name of a function do?
- Getting an accurrate Results from Personality Test
- How can I call method of entity in a repository querybuilder
- Inserting and updating records from 3 tables in laravel
- Column Update in Unit Test Not Reflected
- ORM issue - UNDEFINED PROPERTY
- FormComponent - Pass Entity with Form to Template
- How to use Accessor as a condition in Laravel?
- I have defined relatioships in models but how can i write complex queries in Eloquent way
- Laravel 5.6 - Using model functions in ModelFactory
- Magento products from attribute
- Ext js Grid with PHP no data output
- User timezones issue in Laravel
- Laravel validate array values contained in list
- withoutGlobalScope is not working in relation hasMany in Laravel Model
- Convert a flat associative array into a two-column 2d array with predefined column names
- How to install php-redis extension using the official PHP Docker image approach?
- Service unavailable. The service is temporarily unavailable. Please try again later
- How to destroy the session cookie correctly with PHP?
- Route 404 in laravel11. Is there any rule to prioritize route in web.php
- Recognizing the last iteration of @foreach in Laravel Blade
- Add an element to each row of an array of associative arrays
- Facebook PHP SDK getSession() fails to get session. Cookie problem?
- How to run both Microsoft IIS and WAMP on the same PC via localhost
- How can I easily switch between PHP versions on Mac OSX?