Morning everyone. I have developed a permission model for an application but, before I start coding around it, I wanted to see how everyone else handles this problem.
In this application, a "Party" is any entity that can act as an individual (Person,Group, Organization,Department, etc). An "Object" is an application resource used or accessed by a "Party" (Manage Users, Manage Contacts, Run Reports, etc.). A "Party" can have permission based relationships with both "Objects" and other "Parties". "Objects" can also have permissions on other "Objects". To handle this, I created the an Entity_ACL table: Parent_ID int (FK to either Party_ID or Object_ID) Child_ID int (FK to either Party_ID or Object_ID) Parent_Type tinyint (0 = Party, 1 = Object) Child_Type tinyint (0 = Party, 1 = Object) Permission int (bitmask [read,write, delete, etc]) When a Party requires access to an Object or Party, the access is verified by either direct permissions (i.e. entry in the above table) or inherited (Some parent along chain has permission). Is there something I'm missing? How does everyone else handle this situation? Any advice, ideas, criticisms or demoralizing comments to share? TIA, Chris This email and its attachments may contain confidential information which is intended only for the use of the person(s) named above. If you are not the intended recipient, you are hereby advised that any disclosure, copying, distribution or the taking of any action based on the contents of this information is prohibited. If you have received this transmission in error, please notify the sender and delete this email from your computer. Thank you. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Find out how CFTicket can increase your company's customer support efficiency by 100% http://www.houseoffusion.com/banners/view.cfm?bannerid=49 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:206521 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
