On 11 Cze, 08:58, CMNAJS <[email protected]> wrote: > But Why we need roles and groups both? Isn't either of them is > enough.. and fulfill the requirement.. > As We can have users under groups in AROs and assign certain ACOs to a > group so that the usres of that group have access to those ACOs..
IMO there's one problem with both of these approaches. Having a User HABTM Role would require to iterate through all Roles the user has to determine if the Role has access. The User as ARO approach has another problem - you can't have a User in multiple Groups, thus you can't have a User be 'Post Admin' _and_, say, 'Comment Admin'. You have to either create a separate group 'Post and Comment Manager' or assign permissions directly to the user. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
