On 10/19/06, Linicks <[EMAIL PROTECTED]> wrote: > > All, > I'm trying to add some security features in an application that I > have started in Django. I was having some difficulty working out how > do this, so I started looking at TG, and it's Identity framework. Does > the Identity framework allow me to provide the following functionality? > > > Quick Example: > 1)Isolate each instance of an object from other users. For example, if > users A, B, & C create schedules, they should only be able to act on > there own schedules by default. > by definition each request is 100% independent of the other so yes what user A creates is for user A.
> 2)Grant Specific rights on objects, "schedules" , that the user > owns. Here are some scenarios: > - Lest say that user A would like to give user B the ability to view > their schedule, but nothing else. > - User A would like to give user C the ability to view and edit their > schedule. > - User B would like to give everyone the ability to view there > schedules(make it public). > this can be acomplish with the groups, they worl in a similar way as UNIX groups. although if you need something much more specific, like give access to this object to userA,userB and userC, you will have to extend the default checks for identity. you may have to add some custom predicate and some GUI for administering them, which could be a nice contribution :) and I think some of the catwalk components can help here. > As you can see, I'm just trying to give each user the ability to > control what's done with there objects/data. Essentially, the > application I'm working on is like a blog that would allow people to > post to the world, have private posts, or share there posts with other > users with the option of giving other users or groups of them > permissions to perform specific tasks on their blog entry or entries. I > have gone through the Identity Tutorial in the docs, but wasn't quite > sure how to create user to user permissions on a per object basis. > check out http://docs.turbogears.org/1.0/IdentityManagment for the new predicates this module should help you write them http://trac.turbogears.org/turbogears/browser/tags/1.0b1/turbogears/identity/conditions.py > Thanks! > --Nick > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/turbogears -~----------~----~----~----~------~----~------~--~---
