I agree that I could create a role for each user, and then grant permissions for each survey. However, I think this goes against what a Role should be.
In a typical application, there is a "Customer" role. One would not create a different role for each Customer (i.e. customer1, customer2). In the same way, the "Respondent" encapsulates a generic Role. That is what RBAC is all about By creating a role for each survey, we are in essence creating a role for each particular customer. Thanks. At 11:48 PM 1/15/2002 -0600, you wrote: >Remember each role has 1 or more permissions and each user can have one or >more roles regardless of the group that they are in... > >Instead of creating a group for each survey, I would create a permission for >each. > >Then assign roles. > >e.g. If any user can take surveys 1, 2 & 7, assign a role the 3 permissions. >If the role to permssion is always 1-1, then don't make permissions at all, >make roles for each survey and only worry about roles. > >Now assign each user whatever roles/permissions they need. > >i.e. (using the previous example) if user1 can take surveys 1,2 & 7, assign >him role1 > >Doing it this way, you only need one group, surveyTakers. > >HTH (and clears the confusion), > >Steve > >-----Original Message----- >From: Phillip Rhodes [mailto:[EMAIL PROTECTED]] >Sent: Tuesday, January 15, 2002 10:47 PM >To: [EMAIL PROTECTED] >Subject: security usage question > > >all, > >I am writing a survey application. That is, users login and based upon >their identity will see a set of surveys that they can respond to. > >There may be thousands of users, and a hundred different surveys. I am >unsure how I would use the Turbine security system to do this. How would I >be able to get a list of surveys that a user can respond to? > >I would like to create a group for each survey and assign users to that >group with the role of "Responder" > >So for each survey, there would be a group >Users who could respond to the survey would be given the role "Responder" >for the group that represents the survey they can respond to. > >My problem here is that I KNOW the required role ("Responder"), but I do >not know the group membership of the user. There is no way to get the >groups that a user is a member of. > >It seems that I must know the Group to get a role, but there is no way to >get groups for a given role. I could then take those groups and do a query >against a table I created that defines a survey to group mapping. > > >I would appreciate any thoughts. > >Phillip > > > > > > _________________________________________________________ Do You Yahoo!? >Get your free @yahoo.com address at http://mail.yahoo.com >-- >To unsubscribe, e-mail: ><mailto:[EMAIL PROTECTED]> >For additional commands, e-mail: ><mailto:[EMAIL PROTECTED]> > > > >-- >To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> >For additional commands, e-mail: ><mailto:[EMAIL PROTECTED]> _________________________________________________________ Do You Yahoo!? Get your free @yahoo.com address at http://mail.yahoo.com -- To unsubscribe, e-mail: <mailto:[EMAIL PROTECTED]> For additional commands, e-mail: <mailto:[EMAIL PROTECTED]>
