My question is about CodeIgniter secure redirection. Let's say we have an user and this user has multiple recipients. And also a table with them (CodeIgnitier framework). If I want to edit some of the user's recipients I just click the edit button. Then this action will redirect the user to edit recipient page.
In my codeigniter I'm using:
public fuction editRecipient($recipien_id)
{
...
}
If I organize my function in this way, users can access the edit page of another recipient (by Url: htttp://example.com/editRecipient/123/)
So, what would be the solution?
Your solution should be an Access Control List.