Changes between Version 2 and Version 3 of access_control
- Timestamp:
- 2012-02-18T00:07:12Z (13 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
access_control
v2 v3 34 34 === Permission === 35 35 36 The permission can give a user access to the resources. There are two types of permissions.36 The permission can give a user access to the resources. Although CakePHP default ACL can easily control the access to a specific controller/action. It is not enough for iPeer. Consider the following case: the admin and instructor roles both should have access to /user/add controller/action. Because admin should be able to add student and instructor and instructors should be able to add students to their course as well. However, instructor shouldn't have the ability to add admin. Therefore we consider two types of permissions iPeer. 37 37 38 38 ==== !Controller/Action Permission ==== 39 This type of permission controls if a role has access to a specific controller/action pair, E.g., Admin has access to /user/add or Student is denied from /usr/delete. 39 40 40 41 ==== Functional Permission ==== 42 This type of permission controls if a role has access to a specific iPeer function. E.g. Admin can add instructors or instructor is not allow to add admin.
