On Friday January 23, 2009 22:34:25 Mike Orr wrote: > repoze.what can handle authorization for at least some sites, but I'm > not sure how finished it is.
Out-of-the-box, repoze.what v1 supports the groups/permissions authorization pattern like AuthKit, but allows you to store such groups/permissions in different sources (databases, XML files, ini files, etc.) and you may write so-called predicates to support additional authorization patterns. Regarding "how finished it is", it's got its first stable release this week, it's been used in production websites for some time and has around 5 plugins to date. While I'm its author, I agree that right now it's not good/acceptable for every website whose core authorization mechanisms are not based on the groups/permissions pattern. Specially if you're searching for out-of-the-box support for: * Content-sensitivity authorization (e.g., make assertions like "users that belong to the 'editors' group may edit blog posts but the blog post whose id is '1' can only be edited by the admin" instead of a content-insensitive assertion like "any user in the 'editors' group may edit blog posts"). * Roles-based authorization. I mean, it *is* possible to do the above with repoze.what -- it's just not ready to use and you have to make it yourself. But if you feel comfortable creating your authorization system from scratch, I'd recommend you give r.what a try; I think it's very extensible -- but of course my opinion is biased ;-) Limitations like the ones above will be addressed in repoze.what v2. Cheers! -- Gustavo Narea <http://gustavonarea.net/>. Get rid of unethical constraints! Get freedomware: http://www.getgnulinux.org/ --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "pylons-discuss" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/pylons-discuss?hl=en -~----------~----~----~----~------~----~------~--~---
