You are right. I was probably thinking too deep. Thanks for enlightening me :)
Michael Horwitz wrote: > > It sounds like you need to have aggregate roles which you assign to users > - > this area can be a bit confusing, since the term "role" and "permission" > are > pretty much interchangeable. If you simply think of the existing roles > as being permissions, and then create aggregate roles (which are > simply predefined/editable groupings of these permissions), then all that > really changes is the way you assign roles to users - instead of doing > them > one at a time, you do it as a group. And all that needs to change is a) > the > pages that add roles to users and b) a set of pages to manage the new > aggregate roles. > > Mike. > > On 1/15/07, ErwinF <[EMAIL PROTECTED]> wrote: >> >> >> Hi, >> >> Thanks for the quick answer. >> >> Let me specify what i mean exactly. At this time, i restrict pages based >> on >> a role using acegi. >> By read rights i mean the logged on user can see the page, but not edit >> it >> (possibly by making a seperate jsp for that). >> >> But what i want is to implement some sort of mechanism, which enables me >> to >> alter the roles and their permissions. >> By this, i mean that i will program a maintenance functionality, where >> the >> site admin can update the roles permissions, and program my jsp >> restriction >> based only on that permission, without the need to know the users role. >> So, to restrict access to a page, i would like Acegi to look up the >> permission for that page. Example, for page a.jsp, i would like Acegi to >> look up the current users role, and check if that role has write >> permission >> for that page. >> >> I dont want to make a role for every page, that would be far too >> complicated >> in a large application. Therefore i would like to create some predefined >> roles, which hold permissions for every page i have. This way, i would >> only >> have to add a role to a userobject and that user would be granted access >> accordingly. >> >> Does this make any sense? Or am i thinking too complicated and is there a >> simpler way to achieve this? >> >> I need to implement this because my application needs to have a feature >> to >> change the role permissions whenever the need occurs for this. >> >> -- >> View this message in context: >> http://www.nabble.com/Add-custom-read-write-rights-using-Acegi-tf3014557s2369.html#a8371920 >> Sent from the AppFuse - User mailing list archive at Nabble.com. >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: [EMAIL PROTECTED] >> For additional commands, e-mail: [EMAIL PROTECTED] >> >> > > -- View this message in context: http://www.nabble.com/Add-custom-read-write-rights-using-Acegi-tf3014557s2369.html#a8372966 Sent from the AppFuse - User mailing list archive at Nabble.com. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
