I understand Hal's point of view. It makes perfect sense. But Lee, I'm still trying to figure you out.
First, some definitions: User: A person Group: A set of people, who have some application-independent property (such as job title) in common. (ex: Manager) Permission: Something that the user can do. (ex: FlushEBtoilet) Role: A set of permissions. (ex: UseEB) So Lee, are you saying that we don't need groups because we can accomplish the same thing by assigning users directly to roles? Are you saying that permissions are too granular, and we can get by just fine having the code deal directly with roles? That is, instead of <cfif hasReadArticlePermission>Read this article</cfif> <cfif hasSearchArticlePermission>Search this article</cfif> this works okay for you: <cfif isArticleReader> Read this article Search this article </cfif> Am I getting close? Patrick ==^================================================================ This email was sent to: [email protected] EASY UNSUBSCRIBE click here: http://topica.com/u/?bUrFMa.bV0Kx9 Or send an email to: [EMAIL PROTECTED] T O P I C A -- Register now to manage your mail! http://www.topica.com/partner/tag02/register ==^================================================================
