I'm building a web application which has Users and these Users have permission to access certain bits of the web app.
After a user logs on, according to it's permissions which will be read from permissions table, he will see the bits of the app that he can access.
But to prevent hacking and so on, I need to check if the user has access to that page whenever a page is called on the web server.
If someone goes to for example "a.aspx", I will check from the permissions table if that person has access or not.
But this means there will be a query to PErmissions table each time a page is called.
Will it cause a problem regarding the web app? Will it give errors if more than one query is made at the same time to permissions table?
What is the best way of achieving this goal?