We had this as an ongoing issue for several projects and then we went for
the following:
1.A generic admin circuit which assigns rights to users,
including the rights to access the admin circuit (View, Modify),
The list of rights is read dynamically from the DB, and displayed as
checkboxes on a form.
The admin only has it's own two rights hard coded the rest are application
specific and is stored in that applications DB.
2. In the application the users rights are checked against the security mask
required for each operation, and also for deciding what items to display.
Being an engineer and needing less than 31 different rights per project I
use integer binary masks, BitOR and BitAND but I've heard others use text
flags and list functions.
HTH,
Noam
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Structure your ColdFusion code with Fusebox. Get the official book at
http://www.fusionauthority.com/bkinfo.cfm
Archives: http://www.mail-archive.com/[email protected]/
Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
