+1
but...
What about some other name? As it was pointed out GROUP is a keyword and
my first thought of what "Group" means is a user group (BTW, Stephen
misunderstood you already). What about "Objects"? "Projects"?
Also I understand that you want to drop the current system in favor of
the new one. I think we should keep both. There are two reasons for that
for that: many systems may not need per-object permissions, and, more
importantly, some permissions (and roles) are "global" by their nature,
such as "create new objects". Both of these can be worked-around by
creating default "root" object, but I am not sure this way is better...
just 2 cents.
Jon Stevens wrote:
>
> Hey all,
>
> For Scarab, I'm going to have to extend Turbine's ACL system to be a bit
> more "complete" to say the least (that isn't a dig against it given that I
> helped design most of it, I just need additional functionality now). One
> thing that I'm going to have to add to Scarab is the concept of "Groups".
>
> The way it looks is something like this:
>
> "User x has Role a in Group f."
> "User x has Role b in Group f."
> "User x has Role b in Group g."
>
> Thus, this will give me the ability to overload the concept of "Group" to
> include "Projects". Thus, I can assign permissions (through Roles) to
> "Groups" or "Projects" that the User belongs in.
>
> The table structure looks something like this:
>
> CREATE TABLE Group (
> GROUPID int(11) DEFAULT '0' NOT NULL,
> NAME varchar(99) DEFAULT '' NOT NULL,
> DESCRIPTION varchar(1024) DEFAULT '' NOT NULL,
> PRIMARY KEY (GROUPID)
> );
>
> I would then alter the VisitorRole table to include GROUPID....
>
> create table VisitorRole (
> VISITORID integer NOT NULL,
> ROLEID integer NOT NULL,
> GROUPID integer NOT NULL,
> PRIMARY KEY (VISITORID, ROLEID, GROUPID),
> INDEX visitorID_roleID_index ( VISITORID, ROLEID, GROUPID )
> );
>
> Then, I would alter all the Java code to take advantage of things.
>
> Instead of making this a general Scarab thing, I would like to make this
> more general for others to use as well by including it in Turbine. So, what
> do you think? Can I modify the stuff in Turbine to add this feature?
>
> -jon
>
> --
> http://scarab.tigris.org/ | http://noodle.tigris.org/
> http://java.apache.org/ | http://java.apache.org/turbine/
> http://www.working-dogs.com/ | http://jakarta.apache.org/velocity/
> http://www.collab.net/ | http://www.sourcexchange.com/
>
> ------------------------------------------------------------
> To subscribe: [EMAIL PROTECTED]
> To unsubscribe: [EMAIL PROTECTED]
> Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
> Problems?: [EMAIL PROTECTED]
--
Next generation of VB:
Microsoft(r) Visual Basic = Microsoft(r) Visual Basic + 1
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
