If you have more than a couple of roles with overlapping permissions, checking for the roles rather than the specific permissions becomes brittle (and kind of negates the value you get in defining permissions). I would usually create a structure where roles are associated with one or more permissions, and users are associated with roles--but what you test is whether the user has the permission, via the role, rather than the role itself.
It's pretty easy to model and unless you have a zillion little tweaky permissions, I don't think it's that hard to manage--and if you do have a zillion little tweaky permissions, you're going to have to do something like this anyway. - Chris --- In [email protected], Tom Chiverton <[EMAIL PROTECTED]> wrote: > > On Thursday 05 Apr 2007, Stembert Olivier (BIL) wrote: > > Where do you store the permissions i.e. role1 has rights to view panel1? > > Either send a big list of Booleans back from the server, or just check the > role name. > The latter case is a bit less explicit, but less work. > > > -- > Tom Chiverton > Helping to evangelistically aggregate customized ROI > on: http://thefalken.livejournal.com > > **************************************************** > > This email is sent for and on behalf of Halliwells LLP. > > Halliwells LLP is a limited liability partnership registered in England and Wales under registered number OC307980 whose registered office address is at St James's Court Brown Street Manchester M2 2JF. A list of members is available for inspection at the registered office. Any reference to a partner in relation to Halliwells LLP means a member of Halliwells LLP. Regulated by the Law Society. > > CONFIDENTIALITY > > This email is intended only for the use of the addressee named above and may be confidential or legally privileged. If you are not the addressee you must not read it and must not use any information contained in nor copy it nor inform any person other than Halliwells LLP or the addressee of its existence or contents. If you have received this email in error please delete it and notify Halliwells LLP IT Department on 0870 365 8008. > > For more information about Halliwells LLP visit www.halliwells.com. >
