From: "Andrew Zeneski" <andrew.zene...@hotwaxmedia.com>
...snip...
The new authz implementation handles all of this for us. First we define the
permissions, access:example, update:example and
delete:example as seed data. These are also attached to the example admin
user's security group.
We will give all users access:example permission so they can access the
application, but only give admins the update and delete
permissions.
...snip...
Andrew,
I'm stil thinking at my question about read and access differences. Why are you
using access above, and in which cases read would be
used ? I have the feeling that we don't need access (or read maybe)
Here is a link to your answer
http://docs.ofbiz.org/display/~jaz/OFBiz+Security+Refactor#comment-7705 and the
difference it's still not totally clear to me. Is *read for services* and
*access for UI only* ?
Jacques
PS : Ha, I did not had a look at the example component yet, I better understand now, acces looks like the old OFBTOOLS... But could
you please explain more how read will be used ?
