Understood. If there is any interest in the design, and we start to flesh it out, I'm sure those scenarios could be presented and addressed.
-Adrian --- On Sun, 5/3/09, Andrew Zeneski <andrew.zene...@hotwaxmedia.com> wrote: > From: Andrew Zeneski <andrew.zene...@hotwaxmedia.com> > Subject: Re: Domain Based Security ( was re: Authz...) > To: dev@ofbiz.apache.org > Date: Sunday, May 3, 2009, 7:11 PM > Because no matter how we design security for the default > implementation in OFBiz there will always be some industry, > or business requirement that is not covered, there is no way > we can plan for every possible scenario. Thus, we need to > make sure there are simple ways to modify the default > behavior without having to intrude into the low level > functionality. This is one of the key issues I have been > trying to solve. > > On May 3, 2009, at 7:26 PM, Adrian Crum wrote: > > >> > >> My followup question will be, how do I customize > the access > >> logic for a specific client so that I can maintain > my own > >> logic in a private component and avoid problems > when > >> updating applications? > > > > Why would you want to do that? I can't think of a > reason why a security system would need to be changed.