AnsweredAssumed Answered

NoFields

Question asked by truji_ on May 21, 2012
Latest reply on May 22, 2012 by philmodjunk

Title

Help - Security

Post

I have the following relationship:

Students::student_number=CC::student_number

CC holds all the past and present courses the student was/is enrolled in.

Ideally, teachers should only see the students assigned to them -

 

Current settings are:

Students::TeacherID=List(CC::teacher_number)   ---this will get all the teacherIds for the courses the student is enrolled in

Privileges:

Teachers can see students when:

PatternCount(Students::TeacherID;gTeacherID)

 

The "Open" script goes to the teachers table, finds/gets the teacherID based on the account name, sets the ID with a global field called gTeacherID and performs a find on the TeacherID field.

 

This works for what I need. However, I do not want users to search on an unstored calculation everytime they log in. I've had several server crashes before because of multiple users searching on an unstored calculation (on a different database).

Question is, what is a more efficient/effective way to accomplish this? ideas are very much welcome.

Thanks

Outcomes