You seem to have given this a lot of thought so let me ask a question.
How do I implement a user login system? If the user knows their password
(and don't they always?..), what's to stop them from finding and
contacting the database directly, bypassing the middle tier? I haven't
been able to find a solution to this problem. Every time I try to think
about it by brain goes into a recursive loop! :o
Ideas?
-Cedar
On Wed, 1 Nov 2000, Sergio A. Kessler wrote:
> "Adam Lang" <aalang@rutgersinsurance.com> el día Wed, 1 Nov 2000 09:52:35
> -0500, escribió:
>
> [...]
> >
> >What are people's thoughts?
>
> people's thoughts are that you really want to design a multi-thier
> design (for example a 3 layer design), where
>
> / client1 (browser)
> database <---> bussines rules - client2 (browser)
> (ie. apache, php,...) \ .....
>
>
> if your client has direct access to the database, you design is broken...
>
> sergio
>
>