I use Web2py's RBAC. Why reinvent the wheel?
If you had a group called casual_users, you need to think through the CRUD permissions on the auth_group, auth_membership and auth_permission tables. You also need a way to distinguish groups that casual users can manage. That could be done through a naming convention or maybe by adding a field to the auth_group table. On Sunday, September 30, 2012 10:44:05 PM UTC-4, Alec Taylor wrote: > > I have built up a social-network wherein users can great groups, users > can join groups and members of groups can RSVP to group events. > > How would you recommend I use web2py's in-built RBAC system to enforce > these rules? — Or should I not use it? > > http://bitbucket.org/SamuelMarks/giantpicnic > > Thanks for all suggestions, > > Alec Taylor > --
