Hi, I'm trying to get a good understanding of the new security model. I've read the security proposal (several times) and I've been perusing the configuration files. There are a couple of things I'm not clear on. These are the things that are obvious to me.
1) there is a many-to-many relationship between users and roles 2) there is a many-to-many relationship between roles and permissions But I'm not clear on what is the definition of a "Security ID"? How is it really different from a role? Also, what is the difference between actions and permissions. It seems like they are the same thing. And is it true that groups are not implemented with this new security model? Thanks -Dave
