Originally Posted by
DrByte
You *could* do that, provided you make the necessary code alterations to support your desired functionality. In addition to appropriately identifying the logged-in admin user as being authorized to a specific admin-profile, you would need to adjust all the related scripts which do database queries for data retrieval and/or reporting to specifically limit their results to the specified manufacturer. This would require first identifying the relevant manufacturers_id from the database based on their identification at login+authorization time, and then including a corresponding WHERE clause to every relevant query. Keep in mind that none of the order-related data is stored as being directly related to a given manufacturer. You would first need to look up the products on every order and use those products' product-id values to subsequently lookup the manufacturers id, and if there's a match include the order in the list to be presented later ... and then later do the real reporting/lookup process. It's a complex set of changes, but is certainly do-able if you have the skills to write the queries and the additional required code, and of course test the end results. Be sure to test whether someone can "fake" the system into revealing data they're not supposed to see, too, else you could run into some liability issues.
Hope that's helpful for steering you in the direction you need to go to meet your customized requirements.
Bookmarks