It sounds like you need to have aggregate roles which you assign to users - this area can be a bit confusing, since the term "role" and "permission" are pretty much interchangeable. If you simply think of the existing roles as being permissions, and then create aggregate roles (which are simply predefined/editable groupings of these permissions), then all that really changes is the way you assign roles to users - instead of doing them one at a time, you do it as a group. And all that needs to change is a) the pages that add roles to users and b) a set of pages to manage the new aggregate roles.
Mike. On 1/15/07, ErwinF <[EMAIL PROTECTED]> wrote:
Hi, Thanks for the quick answer. Let me specify what i mean exactly. At this time, i restrict pages based on a role using acegi. By read rights i mean the logged on user can see the page, but not edit it (possibly by making a seperate jsp for that). But what i want is to implement some sort of mechanism, which enables me to alter the roles and their permissions. By this, i mean that i will program a maintenance functionality, where the site admin can update the roles permissions, and program my jsp restriction based only on that permission, without the need to know the users role. So, to restrict access to a page, i would like Acegi to look up the permission for that page. Example, for page a.jsp, i would like Acegi to look up the current users role, and check if that role has write permission for that page. I dont want to make a role for every page, that would be far too complicated in a large application. Therefore i would like to create some predefined roles, which hold permissions for every page i have. This way, i would only have to add a role to a userobject and that user would be granted access accordingly. Does this make any sense? Or am i thinking too complicated and is there a simpler way to achieve this? I need to implement this because my application needs to have a feature to change the role permissions whenever the need occurs for this. -- View this message in context: http://www.nabble.com/Add-custom-read-write-rights-using-Acegi-tf3014557s2369.html#a8371920 Sent from the AppFuse - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
