Re: Bitmask or Named permissions

Is it possible to place the permissions scheme inside of each component and just define the API? This gives you most of the pros of each system. Especially if the implementations of the API do not store permission data which matches the "default" (ie, if read-only is the default, no data needs to be stored for users with read-only access).

Pros

Flexible - components can be added/removed/reshuffled
Maintainable - Permissions are packaged with the objects
Simple - if ( $obj->is_readable($id) ) is fairly clear

Cons

Planning - More up-front work needed (is this a con?)
Insular - Permissions are opaque between components

Probably more cons I haven't thought of.

Remember, when you stare long into the abyss, you could have been home eating ice cream.

Comment on Re: Bitmask or Named permissions

Replies are listed 'Best First'.
Re: Re: Bitmask or Named permissions by linux454 (Pilgrim) on Oct 06, 2003 at 17:54 UTC
Thanks for the feedback. Let me say that more up-front work is definitely not a con =] I am a firm believer that a little more work up-front can save a lot of work on the backend. Really, I think the biggest issue with a permissions system is how to store a user's assigned permissions. This will then generally dictate how permissions are stored. The plan is to create a class that does nothing but answer authorization questsions something like the following pseudo-code: `class Authorize { constructor( string user ) { # get user permissions from persistent storage } hasPermission(PermissionPrimitive perm) { # compare user's permissions with given primitive # and return true or false accordingly } }` [download] Of course this scenario would probably have more methods, but those two are really the core functionality. Given this scenario we have a central place to store a user's permissions and a central place for querying the user's permissions. This allows for the system as a whole to be ignorant of permissions, and puts the power into the specific components that will actually need authorization information.	[reply] [d/l]
Re: Re: Re: Bitmask or Named permissions by waswas-fng (Curate) on Oct 06, 2003 at 18:53 UTC
Then you also have to either place business logic about how permissions react with each other in those methods, or rely on general statements about permissions -- like they are always additive or the minimalistic. Either way limits you on how permissions that are inherently tied together can work (think requisite permissions). also exclusive permissions are hard to deal with as well. -Waswas	[reply]