Neeme Praks wrote:
>
> > -----Original Message-----
> > From: burtonator [mailto:[EMAIL PROTECTED]]
> > Sent: Monday, June 12, 2000 6:28 PM
> >
> > +1
> >
> > We have needed a Portlet authentication/verification
> > architecture/proposal for a while. I would be +1 for reading
> > one but I
> > just dont' have time to write one right now.
> >
> > It would need to support Turbine, multiple groups, users, require
> > non-anonymous, admin only, require roles, etc. This needs to be built
> > into PSML so you can do this for all Portlets when you deploy them.
>
> Ok, I'll try to come up with something. But I need to understand the
> requirements first.
> In Turbine, there are users and roles.
> Admin is a role, right?
> And what do you mean by groups? There are no groups in Turbine, as much
> as I remember.
> And what is the difference between a group and a role anyway?
Yes... Turbine doesn't support groups. I personally think it should but
it was controversial so I haven't really pushed for it.
In a group/role situation security would always be applied with roles
but you could organize groups. IE you could give the HR group access to
the role "Admin"
Anything that supports roles is cool right. The only thing that we
loose is that everything *must* be granular. That is OK, technically
everything would still work.
Kevin
--
Kevin A Burton ([EMAIL PROTECTED])
http://relativity.yi.org
Message to SUN: "Please Open Source Java!"
"For evil to win is for good men to do nothing."
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Archives and Other: <http://java.apache.org/main/mail.html>
Problems?: [EMAIL PROTECTED]
