On Jun 26, 2006, at 7:53 PM, [EMAIL PROTECTED] wrote:
> > The app I'm working on has a fairly distinct set of roles. Very rarely > will privileges be different than those afforded by the basic role. > This has led me to question ACL, and it's need for a record for every > user... Is ACL the answer in these less-complex situations? Well, you be the judge. Its pretty flexible, though, so you might consider just making an ARO that represents a role at large (and somehow tie that ARO to your user, like a role_id in the user table) and do ACL checks that way. Later if you want to make it more granular, you can always create users under the ARO group object. > Although it occurs to me as I write this, perhaps in my case, I > needn't > have users as AROs, but entire roles. So instead of alice, bob and > carl > in aros, I have registered_user, sys_admin, etc. Then I could possibly > code it so as to allow more specific privileges by adding individual > users on an as-needed basis... ?? That's the ticket. Cake on. -- J --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Cake PHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php -~----------~----~----~----~------~----~------~--~---
