Debasidas is right as always. You may want to consider implementing security levels for your database. Also, i would encourage use of stored procedures and then you can specify security contexts on your procedures.
Hi, I am a newbie in developing a website. i have tried to connect using mysqli conncetion
Here is my simple code.
// db.php code
//$con = mysqli_connect("localhost","root","","bakery"); ...