On Jun 22, 12:09 pm, Michael Sharman <[email protected]> wrote: > I added "edit*" to the webskin area when editing my custom role and > that has worked. Not sure why the permission didn't though.
You can programatically check to see if a user has a permission assigned to them (by virtue of the roles they belong to). Your classic checkPermission call. Alternatively you can assign security to the view layer by role, and determine if a specific role is allowed to see a specific view. The benefit of this is the ability to secure entire sets of views with a simple syntax associated with the role. If you didn't have the concept of view/webskin security then you would be forced to add a permission check to the top of every single view to make sure the user is allowed to see it. Now that you can address any view/webskin by convention on the URL this is an essential part of the 5.x security model. Hopefully that helps, -- geoff http://www.daemon.com.au/ --~--~---------~--~----~------------~-------~--~----~ You received this message cos you are subscribed to "farcry-dev" Google group. To post, email: [email protected] To unsubscribe, email: [email protected] For more options: http://groups.google.com/group/farcry-dev -------------------------------- Follow us on Twitter: http://twitter.com/farcry -~----------~----~----~----~------~----~------~--~---
