We are looking to be able to assign higher privs to certain users without
having to create many additional roles without exact hierarchy. (so that if
one person is a manager and they need something specific to privs higher
then theirs, we dont have to create a specific role just for them, but also
assign them to a VP role or something)
I guess we will not 'deny' any privs specifically i guess.
ugh... is this going down the wrong path?
Hector Virgen wrote:
>
> What if Role A was specifically denied access to 4, but Role B was
> specifically given access to 4? Would the user with both roles be allowed
> or
> denied to 4?
>
> -Hector
>
>
> On Thu, Nov 6, 2008 at 1:48 PM, maxarbos <maxarbos@yahoo.com> wrote:
>
>>
>> Can the role value submitted to
>> 'isAllowed' and 'hasRole' be an array?
>>
>> I am trying to assign a user to two different roles that are do not have
>> inherited permissions.
>> Role A has permissions for 1, 2, 3 and Role B has permissions to 2, 3, 4
>> If i assign a user to both roles, I want that person to have permission
>> to
>> Role 1, 2, 3, 4
>>
>> With the acl code I have, it checks isAllowed and hasRole in a place or
>> two.
>> Instead of doing a check on the value in my code, i want to know if they
>> will accept arrays of roles?
>>
>> Thanks.
>>
>> --
>> View this message in context:
>> http://www.nabble.com/Zend_ACL-%3EisAllowed%28%29---can-the-role-be-an-array-tp20370382p20370382.html
>> Sent from the Zend Auth mailing list archive at Nabble.com.
>>
>>
>
>
--
View this message in context: http://www.nabble.com/Zend_ACL-%3EisAllowed%28%29---can-the-role-be-an-array-tp20370382p20370833.html
Sent from the Zend Auth mailing list archive at Nabble.com.
没有评论:
发表评论