0

I have multiple Web applications using same database (MariaDB), so i want to using same user credentials as centralize, so:

  • Is it best practice to using same database users credentials and when add new user add the user also on the database with proper privilege ?? OR
  • create separate table for the users and the any transaction using only one database user to connect, insert, delete, update, .... Thanks & Regards.
Hazim Eid
  • 101
  • 2

1 Answers1

2

It is certainly possible to use database usernames to authenticate web application users, but that is rather uncommon.

End users are typically authenticated at the enterprise level - meaning they use the same identity in a single-sign-on fashion to identify themselves with multiple enterprise applications.

Then in web applications, those identities are mapped to a small number of specific database users with capabilities matching the roles/profiles of the end users.

Having all enterprise users (and much less end users) defined in all databases becomes a logistic nightmare once the number exceeds a few ten's of users. It is definitely not possible once you start having end-users/customers accounts going rapidly into the millions.

Albert Godfrind
  • 1,563
  • 7
  • 8