> I'm using a PHP-enabled application to maintain time-billing information
> for my company. Many of these people will be first-time users of a
> web-enabled application. I'm trying to set it up, so the first time they
> try to log in, it gives them the option of having their password mailed to
> them. (They already have a UNIX account). I'll generate a random
> password for their username, and mail it to them.
> When they return, I want to give them the ability to change their
> password. Is their a way to do this on a per row basis in 3.22.21? I
> don't recall seeing that when I installed it.
> My other option is to create a separate database and put very tight
> programming around it so they can only access their own user information
> without being able to affect other peoples' user information. My concern
> with this approach, is I'm bringing in a couple database programmers very
> green, who understand dba to some degree, but not MySQL dba (grants, and
> so forth). This is also the reason I want to keep user administration out
> of the native MySQL user table until per row security becomes available.
> Thanks in advance for any ideas on this. I'll post the application once
> it's complete to a public ftp site.
There is a SQL command to change your own password only:
SET PASSWORD = PASSWORD( 'new password for the current connected user' )
This is made especially for users without priviledges on the database 'mysql'.