Hi everyone,
I'm facing a problem that I'm unable to solve on my own.
I'm building a management software for rental companies.
The software can manage different companies with their vehicles, each
company owner is only allowed to view their own vehicles and in each
company there are different groups with different users.
So what I'm facing looks something like this:
Company 1
|
+-- Group A (CRUD)
|...|
|...+--User a
|...+--User b
|...+--User c
|
+--Group B (Only read)
[...]
|
Company 2
[and so on]
So my question is, would it be best, to solve all of that with ACL or
with other auth mechanisms or maybe a mixture of both practices?
I was thinking about handling groups and users (since the groups and
theire rights are always the same) and managing the rest over
something like if($user['company'] == $foobar) {}
I hope someone a little more experienced can help me.
Thanks a lot
ricktap
--
Our newest site for the community: CakePHP Video Tutorials
http://tv.cakephp.org
Check out the new CakePHP Questions site http://ask.cakephp.org and help others
with their CakePHP related questions.
To unsubscribe from this group, send email to
[email protected] For more options, visit this group at
http://groups.google.com/group/cake-php
