In an authentication system for a CMS you got users, groups, roles, permissions, etc.
Now, I need to find a name for a very generic class that represents what users are given access to.
Right now we can call it ‘SecurityBox’.
These are environments, like boxes that contain different stuff, let’s say images, pages, etc.: if a user is granted permission on one ore more boxes he can see what’s in there and maybe edit it.
On top of that, they are nested: if the user has access to a inner box, then he can access the one(s) above, too.
what would be a good name, instead of SecurityBox?
is this a standard type of object that could have a widely used name?
I thought Sandbox, but they’re really not sandboxes. Environment could be closer to what the thing is, but not quite.
I was looking for a name that would enphatize the fact that:
it’s a “virtual” container, e.g. you group different objects together just to make it easier to apply permissions to them. It’s more like grouping objects with similar access rules, objects are “contained” elsewhere.
I was looking for a name that would make it clear that it has to do with authentication and access.
in general, it’s more like I have a set of rules that are called something.
then, objects have a foreign key that points to those “somethings”.
one can get objects by what “something” they’re associated to through a function on the class “Something”: for instance: Something->getTemplates(), and for this they can be seen as containers (but maybe it’s not really like that, it’s just that there’s a function that will allow you to get associated objects). Also, they can be seen as containers because each object can be associated to one “something” only.
I hope I could make myself clear, I’m kinda confused myself.
thanks for your help. I do appreciate it.
ACL though, as a word and if I’m not wrong, describes the list of permissions.
I need a name for a container that contains what I want to protect.
I got a ‘System’ container, then each user has its own container and inside these there will be another container for images, another one for templates, let’s say. How many containers there will be, how deeply nested and what they will contain depends on the application, so I need a really generic term.
Users are granted permission to access these containers.
sounds like ACLs (Access Control List).
As far as it goes in PHP Zend_ACL is pretty much the defacto standard. It’s a Zend Framework component that can be used in a stand alone component. I have personally used it with Zend Framework, Symfony and Code Igniter.
