Has anyone ever tried to implement an ownership based authorization scheme in Cake?
What I mean by 'ownership based' is that authorization is based on object relationships in the database, not on ACLs which consider URLs or controller actions. For example, User has many Books, Book has many Pages. Our data looks like User id = (1,2) Book id, user_id = ( (1,1), (2,2) ) Page id, book_id = ( (1,1), (2,2), (3,2) ) With this data, we could join User 1 to Book 1 and to Page 1. We could also join User 2 to Book 2 and to Pages 2 and 3. We would therefore say that User 1 owns Page 1 and User 2 owns Pages 2 and 3. I find this approach conceptually alot more appealing than the ACLs we have now through Auth component. I'm however having trouble thinking of a way to implement this that is both efficient and simple to code. Can anyone offer suggestions on approaches? Have you ever attempted this yourself? --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
