Hi, I have read the ALC-tutorial, which is great! However I still have some questions.
Background/scario I'm making a role based portal that is shared by many organizations and many users who belong to these organizations. The individual users "view" and what they can do, is determined by their association with different roles and organizations. If a person is a member of a specific organization, she can create content for this organization and see stuff that other members of that organization has published. She might not be able to see or create content that has been created by users who belong to other organizations (that she is not a member of). For my project I need to control access to individual comments, news, files, articles etc. ACL should be ideal for this. The different kinds of content are organized in different tables (news, files, articles etc.). This means that I can't just put a "content id" in the AROs object_id, because a news_id, a file_id might be the same (I will not be able to distinguish them from each other). I guess I could combine the id with an alias, so that the ARO for example will have an alias="comment" and object_id=2 or alias="article" and object_id=2. I could also associate the aros tables with every table that holds content, so that the articles, files, comments, and news get an aros_id. But I guess that the aros table need an object_id or alias for the ACL-checking to work. What is the best way? I hope this makes sense ;-) --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Cake PHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php -~----------~----~----~----~------~----~------~--~---
