mgoodwin wrote:Hi, me again,
Without having looked at it too hard, I'm confused by the security model
mgoodwin wrote:
- Why don't child groups seem to have their own permissions?
mgoodwin wrote:
- Is there anyway to get a users roles to default back to that of their group (I suppose you use group overide, but it leaves all the user role data in the database no?)
mgoodwin wrote:
This is the way I see it:
-I think all permission should inherit from the parent group, if overiding is permitted by that group, for child groups.
mgoodwin wrote:
-Users need some kind of muliple inheritance for all the groups which they are in (something analogous to a boolean OR, where they get the best set of permissions available to them).
Rafael Steil wrote:What's wrong with RoleValue, RoleCollection and RoleValueCollection? I like them .. What's your suggestion?
Rafael Steil wrote:As I agree that some models are coupled in some weird places, moving the non-model-implementation away will raise a need for refactoring the business logic, which currently is in the ViewHelper. This is not a really easy refactoring task to do right now, in my opinion. At least not before RC4.
Rafael Steil wrote:I guess you did understand the "generic" model implementation, don't you? I did it that way because, after I'd finished the postgresql implementation, I realized that about 70% of the queries were exactly the same, being insane to maintain it. So, I moved all mysql implementation to the "generic" stuff and just "override" the necessary parts in the pgsql driver.
Rafael Steil wrote:As I wrote before, the permission control is wrong and really needs a rewrite, but, personally, I don't want to code it right now, since there is other higher priorities on jforum to finish in order to be possible to release 1.0 "soon".
Rafael Steil wrote:I cannot concentrate more work in the momment, so, if you want to, please be free to make the modifications you want to do, even if it means the complete rewrite of the permission schema.
Don't get me started about those stupid light bulbs. |