tags:

views:

128

answers:

8
+2  Q: 

delete user best practice?

ive got a forum and i allow user to delete their account.

and i want the users threads to still be there and the username to be shown, but i wonder one thing.

if a user is deleted (basically i just NULL their username and password in the table row but i leave everything else intact) and another user is registering the same username, then people will believe that the new user with the same username has created all the threads the previous user created.

or is it routine to not allow new users to pick those usernames who have been deleted?

what is best practice regarding deleting users?

+1  A: 

Add a DeletedDate column. If this column is NULL, then the user account is not deleted.

This way you are not deleting any data, and you can undelete the account later if you wish, with username, etc. intact.

RedFilter  2010-01-03 13:32:45
+8  A: 

Add an extra column to your users table, called 'deleted' or similar. Default this to zero (false). When the user is "deleted", set this field to 1 (true). That way you won't run across any problems with users having duplicate usernames, as the original will be still present and linked to your existing posts etc.

richsage  2010-01-03 13:33:10
but i should NULL the username and password field right? then they cant login
weng  2010-01-03 13:36:01
No, in your login sequence you should compare the username/password combination against your database as normal. Then if the 'deleted' column for this user is zero/false, the user is able to login as normal. If it's 1/true, then you reject the login.
richsage  2010-01-03 13:37:23
If you null the username field, what will you show in the forum threads where you need to mention this user?
naivists  2010-01-03 13:37:45
my mistake, i meant i null the email and password field. cause they log in with their email. why shouldnt i null email and password and let it still be there?
weng  2010-01-03 14:50:47
Because there's no need to. A user's ability to login is effectively determined by a) email/password being correct and b) their "deleted" field being false. If the deleted field is set to true, disabling their login, why would you need to bother nulling any other fields in this case?
richsage  2010-01-03 15:44:18
+1  A: 

You should not actually delete users, just set a "deleted" flag on their records in database. If such flag is set, do not allow the user to log in. Also, show the user page with "user is deleted" on it. If you actually delete a record, you will have to decide, what to do with

  • forum posts the user has been authoring
  • replies made by the user
  • replies where someone mentions something said by the deleted user
  • private messages sent to/from this user

So, this would actually change the conversations people have had.

naivists  2010-01-03 13:33:26
+3  A: 

I would keep a deleted field in the table as a boolean. Set it to true when the user leaves. Keep usernames unique.

Daniel A. White  2010-01-03 13:33:27
A: 

The posts should be linked to user via an ID not by username so unless you reuse an ID, which you shouldn't, then you won't have this problem.

Paul Creasey  2010-01-03 13:35:32
+1  A: 

If it's important to enable others to use the old username, you could change user's name into eg. Deleted User X - that way there would still be a connection between the user's posts (which could be important in some cases).

Grav  2010-01-03 13:37:20
+1  A: 

If you keep the posts and the usernames you don't want to people to register the same username again. It will cause a lot of confusion. Typically you also make the username a unique key of the user table.

I would recommend letting the users delete their accounts completely if there are no associated posts or other activity. If there are associated posts the account is disabled and the posts marked as made by "Deleted user".

Then make it an administrative action to wipe the account and associated posts completely. This can be added to your regular maintenance tools.

pehrs  2010-01-03 13:44:00
+1  A: 

You can even add an extra column in users table titled "uid" and generate new uid for every new user who registers.

Nikit Batale  2010-01-03 13:44:11

related questions

Remove Quotes and Commas from a String in MySQL
What's the best way of converting a mysql database to a sqlite one?
How do you manage databases in development, test, and production?
Multiple foreign keys?
Add 1 to a field (MySQL)
Issues using MS Access as a front-end to a MySQL database back-end?
Bigger than a char but smaller than a blob
How do I retrieve my MySQL username and password?
Long-time LAMP Developer moving to VB.NET
How do I Concatenate entire result sets in MySQL?
Full complete MySQL database replication? Ideas? What do people do?
SQL: Distribution of table in time
SQLite vs MySQL
How do I create a new Ruby on Rails application using MySQL instead of SQLite?
Multiple Updates in MySQL
MySQL/Apache Error in PHP MySQL query
What all do I need to escape when sending a (My)SQL query?
Auto Generate Database Diagram MySQL
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
Python and MySQL
SQL Server 2005 implementation of MySQL REPLACE INTO?
How to export data from SQL Server 2005 to MySQL
Throw Error In MySQL Trigger
Binary Data in MySQL