Home/ Questions/Q 304163
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-12T07:15:18+00:00

I’m creating a blog, and am storing user permissions (to post/edit/delete blog posts) in

  • 0

I’m creating a blog, and am storing user permissions (to post/edit/delete blog posts) in a mysql table.

Should I create one column per permission, or combine all percussions into a string in one column such as 101 would mean that a user could post and delete but not edit.

The reason I ask is that I am worried about having too many column in my table.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    First of all, I would rule out combining all permissions into a single field. It seems economical at first, but it can turn into a bit of a problem if you will ever need to expand or modify your permissions structure.

    Creating a column for each permission in the user table is a good design for a simple system, but may limit your future expandability.

    I recommend implementing a many-to-many relationship between users and permissions. This allows you to add as many types of permissions you want without changing the schema. It is very easy to query with a simple join, and is portable to other databases.

    You accomplish this by creating two new tables. Assuming the following schema:

    CREATE TABLE `users` (
    `id` INT NOT NULL AUTO_INCREMENT PRIMARY KEY,
    `username` VARCHAR(100),
    -- other user fields --
);

    We can add the m2m permissions schema like this:

    CREATE TABLE `permissions` (
    `id` INT NOT NULL AUTO_INCREMENT PRIMARY KEY,
    `name` VARCHAR(50) NOT NULL UNIQUE,
);

CREATE TABLE `users_permissions` (
    `id` INT NOT NULL AUTO_INCREMENT PRIMARY_KEY,
    `user_id` INT NOT NULL,
    `permission_id` INT NOT NULL 
);

    You might then add some sample users and permissions:

    INSERT INTO `users` (DEFAULT, 'joe');
INSERT INTO `users` (DEFAULT, 'beth');
INSERT INTO `users` (DEFAULT, 'frank');

INSERT INTO `permissions` (DEFAULT, 'Administrator');
INSERT INTO `permissions` (DEFAULT, 'Write Blog');
INSERT INTO `permissions` (DEFAULT, 'Edit Blog');
INSERT INTO `permissions` (DEFAULT, 'Delete Blog');

    And finally you can associate users with permissions like so:

    -- joe gets all permissions
INSERT INTO `permissions` (DEFAULT, 1, 1);
INSERT INTO `permissions` (DEFAULT, 1, 2);
INSERT INTO `permissions` (DEFAULT, 1, 3);
INSERT INTO `permissions` (DEFAULT, 1, 4);

-- beth can write and edit
INSERT INTO `permissions` (DEFAULT, 2, 2);
INSERT INTO `permissions` (DEFAULT, 2, 3);

-- frank can only write
INSERT INTO `permissions` (DEFAULT, 3, 2);

    For a smaller blog, you may not need a flexible schema like this, but it is a proven design. If you like, you can also take this one step further and create a role system. This works by giving each user a role (one-to-many), and each role has a number of permissions (many-to-many). This way permissions don’t need to be set on a per-user basis, and you can simply assign them a role like “Administrator”, or “Editor” or “Contributor”, along with the associated permissions for that role.

    • 0