Internet Application Development

Lab 06

Topic: Role-Based Access Control (RBAC)

Problem Outline

Refer to the interfaces and database implementations from previous labs. You are required to design and implement a Role-Based Access Control mechanism for Pine Valley Furniture Company interfaces developed so far.

1. As an initial step, enhance the schema of the PVFC database to include user roles and authentication details.
2. Next, enhance the solutions for the previous problems to take advantage of the modified schema. Incorporate role-based access control for all interfaces (e.g., restricting Catalog access and Customer updates to Admins, while allowing standard features for regular customers).
3. Ensure that session variables securely track the logged-in user's privileges to grant or deny access conditionally.