How does APP do button-level access control?

do button-level permissions control on APP, like html, return all button elements when logging in and let the front end handle it on its own?

Mar.20,2021

this is not strict enough, and permission control should be done in the background to prevent the foreground from maliciously modifying the passed parameters.


permission control is controlled by the back end. Roles control the list of resources (menus, etc.) that the user belongs to.
if the front end handles these things, it loses the meaning of permission control.

first: security issues to understand the program directly modified your permissions.
second: the program is not flexible enough. Access control is written to death and cannot be changed flexibly.

MySQL Query : SELECT * FROM `codeshelper`.`v9_news` WHERE status=99 AND catid='6' ORDER BY rand() LIMIT 5
MySQL Error : Disk full (/tmp/#sql-temptable-64f5-1e49103-43c7d.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
MySQL Errno : 1021
Message : Disk full (/tmp/#sql-temptable-64f5-1e49103-43c7d.MAI); waiting for someone to free some space... (errno: 28 "No space left on device")
Need Help?