I think only #1 is viable - #2 doesnt scale and #3 rather case
specific. Since this is mostly an ORM issue it strikes me that some
doctrine->acl hooks that would allow me to add ACL criteria to my
query and have Doctrine handle the joins itself abstracting the actual
join code from the developer.
$products = $this->getDoctrine()
->getRepository('AcmeStoreBundle:Product')
->withPermission('EDIT')
->findAll();
Something like that...
--
If you want to report a vulnerability issue on symfony, please send it to
security at symfony-project.com
You received this message because you are subscribed to the Google
Groups "symfony developers" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to
[email protected]
For more options, visit this group at
http://groups.google.com/group/symfony-devs?hl=en
