Hello Chaps,
I'm currently working on an overhaul for my security/authentication model and finally reached the core element, which is the granular permissions. I've seen several different solutions for achieving this kind of thing and thought I'd try and see what everyone here does for their applications, right from a database design perspective through to handling the conditionals on the pages, elements and functions that need securing. I've seen this kind of security system handled with both arrays and structures respectively. The concept of the array method was that you store a bunch of id's for different permissions, then you can run an isEntitled() method which loops the array looking for a particular permission, returning true or false, this worked nicely from a database type perspective as it was quite tidy and just used a small table with a couple of columns. The structs method work nicely from a ColdFusion point of view, but I felt the database was a little untidy as you had a separate database column for each 'entitlement' which was set to 0 or 1 dependant on the permissions, each user then had a row in this table. This was then stored in the struct as key/value pairs with each entitlement having its one struct element and a 'true' or 'false' value, you can then do something like <cfif Session.User.Entitlements.DeleteUser> to check if the user has that permission. What are your thoughts on this? What methods do you use and do you perhaps have some tutorials or code for me to study? I'm just looking for something very scalable so I have the highest level of control over my users, I've seen a few examples using LDAP too, but this isn't something that really appeals to me as it's not so self-contained a pure CF and SQL solution. Thanks guys, I look forward to hearing your ideas, Rob ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Upgrade to Adobe ColdFusion MX7 The most significant release in over 10 years. Upgrade & see new features. http://www.adobe.com/products/coldfusion?sdid=RVJR Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:279045 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
