On Sun, Jan 17, 2010 at 10:55 PM, mdipierro <mdipie...@cs.depaul.edu> wrote:
> No auth takes security by the book. If used everything is restricted
> unless permission is granted explicitly.
>
> In your case is would just add a Field
> ('private','boolean',default=False) and if a user tried to access a
> record with private==True thet he/she did not create, block it.
>
> I was thinking around those lines, since it's just a matter of adding an
extra condition to queries.
txs for clearing that.
Miguel
-- You received this message because you are subscribed to the Google Groups "web2py-users" group.
To post to this group, send email to web...@googlegroups.com.
To unsubscribe from this group, send email to web2py+unsubscr...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/web2py?hl=en.
