> This whole plan thing - wouldn't it be very similar to how users/groups > would be modelled/set up - at least in their relation. Then checking if a > user is authorized to do x - that would be similar to access control lists, > I think. > > /H.
Yes, similar to, but not exactly. ACL takes care of the 'capability' part, but not 'constrain'. (e.g. 1GB of storage is allocated for each user in Plan A, and 10GB for each user in Plan B). I DB layer is easy to solve, but I'm not sure about the OO layer. The reason I want to have it separated out from the main business case is because it seems like it is hard to test, and therefore I wonder if it's a good idea to take the dependency with Plan away. Maybe have Plan layer be added on later with a Proxy object. What do you think? Henry --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CFCDev" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cfcdev?hl=en -~----------~----~----~----~------~----~------~--~---
