Has anyone published a sample implementation of a permission scheme
with tables and code? There is a fairly complex example for other
security frameworks including heirarchical roles and bit based
permissioning.
I have a need to have multiple levels of permissions with the ability
to allow or deny permissions at any level and to support inheritance.
For example I may have a heirarchy of roles:
Admin
Manager
User
Permissions for Admin should include an aggregate of permissions for
all 3 roles. Also how to handle denies? I assume that denies
encountered while scanning from user to manager to admin should be
enforced
If on my application side i have a heirarchy as well:
Domain
Project
Task
I would like to be able to aggregate and handle grants and denies
properly. In reading the Shiro documentation and any articles I
could find the Permission side is left up to the user to implement but
I can't find any examples to guide me.
Thanks
Scott Ryan
[email protected]
