On Thu, Jan 03, 2013 at 10:01:08PM -0500, Michael Pedersen wrote: > I'm trying to find a good *generalized* mechanism, and it's not easy. I've > got a couple of use cases that I've got sitting in my brain that I haven't > been able to find a common answer for. Maybe the two of you can help me > out with ideas. My requirements are rather simple, perhaps an example will help. A shop site has orders.
Administrators can see all orders: This is what the auth stuff does fine now, you just check for a group membership and away you go. Users (ie everyone else) can see "their" orders only: I've got a foreign key in my orders table so I need to check that, also I know the permissions stuff has a concept of "or" so I'm 2/3rds there. I assume the easiest way is to make a new type of permission checker thing, but not sure where this would be. - Craig -- Craig Small VK2XLZ http://enc.com.au/ csmall at : enc.com.au Debian GNU/Linux http://www.debian.org/ csmall at : debian.org GPG fingerprint: 5D2F B320 B825 D939 04D2 0519 3938 F96B DF50 FEA5 -- You received this message because you are subscribed to the Google Groups "TurboGears" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/turbogears?hl=en.
