Remember each role has 1 or more permissions and each user can have one or more roles regardless of the group that they are in...
Instead of creating a group for each survey, I would create a permission for each. Then assign roles. e.g. If any user can take surveys 1, 2 & 7, assign a role the 3 permissions. If the role to permssion is always 1-1, then don't make permissions at all, make roles for each survey and only worry about roles. Now assign each user whatever roles/permissions they need. i.e. (using the previous example) if user1 can take surveys 1,2 & 7, assign him role1 Doing it this way, you only need one group, surveyTakers. HTH (and clears the confusion), Steve -----Original Message----- From: Phillip Rhodes [mailto:[EMAIL PROTECTED]] Sent: Tuesday, January 15, 2002 10:47 PM To: [EMAIL PROTECTED] Subject: security usage question all, I am writing a survey application. That is, users login and based upon their identity will see a set of surveys that they can respond to. There may be thousands of users, and a hundred different surveys. I am unsure how I would use the Turbine security system to do this. How would I be able to get a list of surveys that a user can respond to? I would like to create a group for each survey and assign users to that group with the role of "Responder" So for each survey, there would be a group Users who could respond to the survey would be given the role "Responder" for the group that represents the survey they can respond to. My problem here is that I KNOW the required role ("Responder"), but I do not know the group membership of the user. There is no way to get the groups that a user is a member of. It seems that I must know the Group to get a role, but there is no way to get groups for a given role. I could then take those groups and do a query against a table I created that defines a survey to group mapping. I would appreciate any thoughts. Phillip _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]> -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
