What are the best practices for adapting a PHP class and function to retrieve permissions from a database instead of predefined constants?

When adapting a PHP class and function to retrieve permissions from a database instead of predefined constants, it is best practice to create a table in the database to store the permissions and their corresponding values. Then, modify the class and function to query the database for the permissions based on the user's role or ID.

// Assuming we have a database connection established

class Permissions {
    public function getPermissions($userId) {
        $query = &quot;SELECT permission FROM user_permissions WHERE user_id = :userId&quot;;
        $stmt = $pdo-&gt;prepare($query);
        $stmt-&gt;bindParam(&#039;:userId&#039;, $userId);
        $stmt-&gt;execute();
        
        $permissions = [];
        while ($row = $stmt-&gt;fetch(PDO::FETCH_ASSOC)) {
            $permissions[] = $row[&#039;permission&#039;];
        }
        
        return $permissions;
    }
}

// Example of how to use the Permissions class
$permissions = new Permissions();
$userPermissions = $permissions-&gt;getPermissions($userId);

// Check if a specific permission exists
if (in_array(&#039;admin&#039;, $userPermissions)) {
    echo &#039;User has admin permission&#039;;
}

Keywords

PHP class function database permissions

What are the best practices for adapting a PHP class and function to retrieve permissions from a database instead of predefined constants?

Keywords

Related Questions