SitePoint Sponsor

User Tag List

Results 1 to 25 of 384

Threaded View

  1. #14
    SitePoint Addict
    Join Date
    May 2003
    Location
    The Netherlands
    Posts
    391
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)
    Quote Originally Posted by Captain Proton
    I've mentioned this before, but what about this - not hypothetical - situation:

    - a user can only edit a news article when he has posted that article himself. In other words $user->id == $news->userID.

    How do you fit that in with your three things needed for Access Control, arborint?
    I like you mention this because it has had me going nuts for a while in the past. I've never implemented myself but I came up with an idea I think you'd like

    Considering a RBAC system, each role is in fact a group of users. Within each, I'd define a captain (I said you'd like it) who has the privilege of performing actions on each and every object created by any other user in that group (of the same role) or any group below it (groups/roles keep hierarchical order). By default a user can/may only perform actions on the items he/she him/herself created. By default every first user of a group is captain. Of course, multiple captains would also be possible; that way you could define a role (visitor) which has privileges to perform an action (read) on a given object (article) where every user is a captain ...

    Does that make any sense?
    Last edited by nacho; Jul 28, 2005 at 08:38. Reason: typo


Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •