Hi, Really nice work. I even posted some issues on it http://code.google.com/p/zfsecurity/issues/list My question though is how do you handle hierarchy acl. From what I see you assign one user to serveral groups. And somehow based on that you decide if (not)allowed some privilige. Is it not better to have groups that are in hierarchy and have user just belong to single group. Of course this will require extra interface where you define group hierarchies.
Could you please share some light on either approach and why you chose this one. Jason Eisenmenger wrote: > Hello list, > > If anyone is interested, I've posted a screencast demonstrating the > "drop-in" security module that I showed at the ZendCon UnCon last > month. If you're in the market for an ACL system for your site, check > it out: > > http://oss.jasoneisen.com/2008/10/14/security-module-screencast/ > > Jason
