Gossamer Forum
Home : Gossamer Threads Inc. : Discussion :

New GT Permission System

Quote Reply
New GT Permission System
I do repeat one of my earlier suggestions here, since it may apply to more GT apps.
But especially for Links SQL, Editor feature.
Originally was posted in following thread in 2004 March:
http://www.gossamer-threads.com/...i?post=262992#262992



I think a new permission system would be better for GT apps, especially for Links SQL, Editor feature.
I mean not just an admin-user permission, but much more.
I have a few ideas, let me express some of them.

Components of permission system:

Access Rights:
  1. Read (R)
    • a) Read specific table (inherited from default rights)
    • b) Read specific field (inherited from table rights, if defined)
    • c) Read specific record (inherited from field rights, if defined)
    • d) Read specific template set (inherited from record rights, if defined)
    • e) Read specific template (inherited from template set rights, if defined)
  2. Modify specific record (M) (right inherited from field rights if defined)
  3. Add specific record (A)
  4. Delete specific record (D)
  5. Inherit from above (I)
  6. Admin permission (full permission)

Pre-created permissions (R=read M=modify A=add D=delete):
Admin permissions: full admin interface permission, permission to all tables, fields, records
Editor permissions: R specific tables, M specific tables, A specific tables, D specific tables permissions applied. Including: specific tables, fields, records. Excluding: specific tables, fields, records.
User permissions: R specific tables, R own records, M own records, A specific tables, D own records. R, M, A, D permissions applied. Including: specific tables, fields, records. Excluding: specific tables, fields, records.
Guest permissions: R specific tables, fields. Including: specific tables, fields, records. Excluding: specific tables, fields, records.

Inheritance:
- Default permissions are set in Setup
- Group inherits default permissions, except if set otherwise
- User inherits Group permissions, except if set otherwise
- Table inherits User permissions, except if set otherwise
- Field inherits Table permissions, except if set otherwise
- Template Set inherits Field permissions, except if set otherwise
- Template inherits Template Set permissions, except if set otherwise

Permissions could be assigned to user groups (Admin, Editor, User, etc.).

The truth is, that I had not much time to think on it, so it's not well thought, but may give you some idea what I really mean.

Best regards,
Webmaster33


Paid Support
from Webmaster33. Expert in Perl programming & Gossamer Threads applications. (click here for prices)
Webmaster33's products (upd.2004.09.26) | Private message | Contact me | Was my post helpful? Donate my help...
Subject Author Views Date
Thread New GT Permission System webmaster33 2392 Feb 8, 2005, 8:18 AM
Post Re: [webmaster33] New GT Permission System
VishalT 2258 Feb 11, 2005, 6:13 PM