Hi all, We are currently developing a couple of (object) route classes that handle access control on objects. After working on this for a while, I must say that this is a very convenient way to protect your application. Because the routes are aware of the requested, you can not only test for plain credentials, but also fro access privileges on the requested object.
That made me think whether a full move of the security layer to the routing might be a desirable option, maybe combined with some sort of ACLs. Let me know what you think. Bernhard -- Software Architect & Engineer Blog: http://webmozarts.com --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "symfony developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/symfony-devs?hl=en -~----------~----~----~----~------~----~------~--~---
