pracro:acl
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
pracro:acl [2011/04/11 08:38] – deva | pracro:acl [2011/04/13 14:33] (current) – deva | ||
---|---|---|---|
Line 1: | Line 1: | ||
======ACL====== | ======ACL====== | ||
+ | =====Server===== | ||
+ | ====Design1==== | ||
+ | Templates contain ACLs. The users and roles are defined in a config file.\\ | ||
Template: | Template: | ||
<code xml> | <code xml> | ||
<?xml version=' | <?xml version=' | ||
- | < | + | < |
<macro name=" | <macro name=" | ||
- | <macro name=" | + | <macro name=" |
| | ||
<header caption=" | <header caption=" | ||
- | <macro name=" | + | <macro name=" |
- | <macro name=" | + | <macro name=" |
- | <macro name=" | + | <macro name=" |
</ | </ | ||
</ | </ | ||
- | aclXXXXX attributes contain lists of either userids and/or groupids. Currently: ' | ||
- | aclwrite and aclread can be connected with the template and is inherited to all the contained macros. | ||
Users and Groups: | Users and Groups: | ||
< | < | ||
- | # some config file | + | # some config file in libconfig++ format |
- | user { | + | roles = ( |
- | | + | |
- | | + | {id=" |
- | | + | {id=" |
- | } | + | {id=" |
+ | ); | ||
+ | users = ( | ||
+ | | ||
+ | | ||
+ | {id=" | ||
+ | {id=" | ||
+ | ); | ||
+ | </ | ||
- | group { | + | ====Design2==== |
- | name = 'doctor' | + | No changes to template. ACLs are defined in config file, with 'realms' |
- | | + | ACL file: |
- | } | + | < |
+ | < | ||
+ | ref_forunders write {" | ||
+ | :henvisning write {" | ||
+ | ref_forunders: | ||
+ | </ | ||
- | group { | + | Users and roles can be defined as in // |
- | | + | |
- | } | + | =====Client===== |
+ | The data received on the client must indicate what features that is to be enabled for the current user, without the client having to make an explicit user lookup. | ||
+ | Example: | ||
+ | <code xml> | ||
+ | <?xml version='1.0' | ||
+ | < | ||
+ | features=" | ||
+ | <macro name=" | ||
+ | <macro name=" | ||
+ | <macro name=" | ||
+ | </ | ||
</ | </ | ||
+ | Making the commit button disabled or invisible and the ' |
pracro/acl.1302503883.txt.gz · Last modified: 2011/04/11 08:38 by deva