Level 51
I dont think that is sensitive information it is only flag for admin ... password would be sensitive information
Summer Sale! All accounts are 50% off this week.
Is it a good idea to store users admin status on session like this:
session()->put('is_admin', true);
It would only be run once on login and then different parts of application could use it without additional queries. Is it insecure in some way?
How can user set value for session which is on server ...
http://stackoverflow.com/questions/5121766/can-a-user-alter-the-value-of-session-in-php
Please or to participate in this conversation.