posted 23 years ago
I am into a team of developers who are trying to figure out an optimized way of implementing a user level security mechanism. We have thought of number of altenatives, likes of implementing relationship objects, Security objects for each object and then relating them at runtime etc.
Once a while it came to us that we can also use ACL for each object/user. I was wondering if i could get some information on how are these ACL's implemented ? Should i go for a user based one, or a object based one or the other way round.
If anybody can help me regarding the idea or any place where i can find information on this topic.
thanks in advance.