I'm in the process of turning an application that was used by a single organization into one that will be used by many, I'm using regular Auth and auth groups to manage which users can do what according to what groups they have memberships on. The first problem I'm facing is that the users that belong to a given auth_group will now only belong to that group in a given organization, which I guess would also be a problem with regular auth functions.
Another problem is that I want the organizations to be able to share some of their data with another organization. So, right now, I'm considering what would be the best architecture for the application. One idea would be to store the organization the user is currently browsing with (no reason to limit that one user can only belong to one organization) in session, then I would have to check in each controller if the user has the right group and organization for what he wants to do, this would pollute my code somehow. Another idea is for each organization to become a group, then what I use groups for right now will be permissions, this is probably the best route. This would still leave the problem of making the user see the right data depending on which organization he is currently browsing with. Any advice on how to do this as cleanly as possible in terms of code? -- Resources: - http://web2py.com - http://web2py.com/book (Documentation) - http://github.com/web2py/web2py (Source code) - https://code.google.com/p/web2py/issues/list (Report Issues) --- You received this message because you are subscribed to the Google Groups "web2py-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to web2py+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
