Users and Groups
Posted: Thu Jul 05, 2007 10:30 am
Me again =D,
I use ACL in my framework (though it's not true ACL and I really need to re-do my entire permissions system) for, well - controlling what users can and can't do. I'm about to start work on the Users and Groups module for my CMS which will allow users to edit/delete/add Users/Groups. However I've got a few questions on how this should work.
With my whacky ACL system that really isn't ACL - groups have Ranks, the lower the rank the higher you are. Now, if a user has permission to Add/Edit and Delete users - should he/she only be able to Add/Edit/Delete from the current group he/she is in and users from a group that is a rank lower than them (a higher rank number, I'm confusing myself here!) OR from every group?
Regards,
I use ACL in my framework (though it's not true ACL and I really need to re-do my entire permissions system) for, well - controlling what users can and can't do. I'm about to start work on the Users and Groups module for my CMS which will allow users to edit/delete/add Users/Groups. However I've got a few questions on how this should work.
With my whacky ACL system that really isn't ACL - groups have Ranks, the lower the rank the higher you are. Now, if a user has permission to Add/Edit and Delete users - should he/she only be able to Add/Edit/Delete from the current group he/she is in and users from a group that is a rank lower than them (a higher rank number, I'm confusing myself here!) OR from every group?
Regards,