On Wed, May 21, 2008 at 12:23 AM, Uwe Schäfer <[EMAIL PROTECTED]> wrote: > Maurice Marrink schrieb: > >>> feel free, to convert me ;) >> >> I am not good at converting people, either you see the light or you don't >> :P > > *g* > >> One of the strong points of swarm (imo ;)) is the ease with which it >> lets you create complex authorization schemes, while still giving the >> end user full control to create there own user roles. > > humm. did not look at it in detail (the homegrown stuff was 'just there') > is it possible to programatically grant & revoke ?
Are you talking about changing the acl (policy files) after they have been read or about changing user permissions?. Both have a flag indicating if they are locked/read only that gets set by the framework right after construction. So while it is not possible to change the existing ones, it is possible to replace them or in the case of a subject add a new subject with more permissions (if allowed by the logincontext). In my experience there are only a few situations that warrant that behavior though :) Maurice > >> Yes i think a forum warrants a complex authorization scheme :) just >> thinking of the top of my head i can come up with admins, moderators, >> power users, users and guests all having different permissions using >> swarm you can define permissions down to the individual components on >> the pages (not that you would want to do that on every page :) > > certainly not ;) > >> but you >> >> could) administrators can then choose which permissions to grant to >> each role and or define there own roles. But even if you want to keep >> it simple you just define 2 roles admin and user and not a single line >> of code needs to change :) > > well done, you resurrected my interest. i´ll take a closer look asap. > the fact that it now is decoupled makes my evening. > > thx, uwe > > --------------------------------------------------------------------- > To unsubscribe, e-mail: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
