How to setup Zend 2 ACL roles for single objects -

-

my simple data model: users can create articles, makes them owner of particular articles object. users can invite other users contribute on articles, makes other users contributors of particular article.

so, there roles owner , contributor , there resource article

now question is, how implement construct best, using zf2's acl , maybe bjyauthorize? struggle here, because roles of users not globally valid resource article, have assigned single article instance.

generally

i think, strength of zf2 acl inheritance of privileges according role structure , there acl-aware modules, menuhelper.

if not need inheritance or these other - acl-aware - modules, can create simple solution withouth acl module.

solution 1. - acl

resources, roles , privileges data. role mean, depends on store role in database or put in role, create structure authorization.

the isallowed method of acl object verification base upon data structure (of roles, resources , privileges) created, , can decide information.

what - think - need , object access control mechanism [can user/group of users (= role) write/read (= privilege) particular object (= resource)] besides feature access control [can user/goup of users (=role) write/read (= privilege) kind of object (= resource)].

so if store article resource, connect methods (write, read, delete etc) privilege , create relation these privileges given user / group, have achieved goal.

solution 2. - acl assertion

if store array of contributor users on articles, can use existence of to-check user in array assertion while creating "allow structure".

solution 2.1. - acl assertion - in separate table

you can store contributors in separated table, joined article table.

solution 3. - serialized array of contributors

if not need robust background of zf2 acl, can check existence of user in array of contributors stored on article.

i rather solution 1. centrally managed ac, see pros on solution 2. side too. (solution 1. mixes role , user definition, have seen mix of group , user objects, disturbs me not much. :))

listing article

an other thing consider: listing articles, 1 can edit (contributors). checking articles foreach there. using more/less direct database queries ruin zf2 acl philosophy. if need paginate too... problem. :)

there bunch of other solutions (and combinations of them) too. find right 1 have consider count of articles too. if store rows each contributor each article in role/resource/privilage tables, can grow fast.


Comments

Post a Comment

Popular posts from this blog

database - VFP Grid + SQL server 2008 - grid not showing correctly -

-
i having problem, have grid called "gridbasica" , this: thisform.gridbase.recordsource = "sgviemp" sgviemp cursor made executing select sqlserver command sqlexec. when want modify registry, go form , the update there. so, when come form grid, grid isnt grid anymore, big white rectangle. reading around said: delete recordsource , asingt again. thisform.gridbase.recordsource = "" *--i sqlexe here thisform.gridbase.recordsource = "sgviemp" i , works, but, when click button modify again cursos updated modify form doesnt load fields did first time. could me out that? thanks in advance. --------------- edit ------------------ i have been doing recommended: lnselect = select(0) n = sqlexec(thisform.conexion,"select emp_ccodigo codigo, emp_cnombre 'nombre o razon social', emp_cnumrif 'r.i.f' sgviempr","sgviemp1") set echo on suspend select sgviemp zap in sgviemp *-- browse *--zaps correct
Read more

jquery - Set jPicker field to empty value -

-
im using jpicker color selector in form. have clear value set window/icon 'no color selected' state. i've tried following: $(':input[name="color"]').val(''); //access value directly. (does not affect jpicker) 2: $.jpicker.list[0].color.active.val('hex', '', this); //set color black , input value 000000, instead of empty string 3: $.jpicker.list[0].color.active.val(null, '', this); //does nothing none of 3 methods seems behave properly. in advance. this works me :) $.jpicker.list[0].color.active.val('v', null); here example: http://jsfiddle.net/3up7n/
Read more

.htaccess - htaccess convert request to clean url and add slash at the end of the url -

-
ok , searched more 4 days , more 20 posts here in stach or in websites without kind of success first here htaccess file rewriteengine on rewriterule ^([a-za-z0-9_]+)/?$ index.php?page=$1 [nc] rewriterule ^([a-za-z0-9_]+)\/([a-za-z0-9_]+)\/?$ index.php?page=$1&action=$2 [nc] i tried many codes 1 worked me can call request , works me www.example.com/pagename => www.example.com/index.php?page=pagename here questions , please provide me information "in detail" understand code well 1- how convert request automatically www.example.com/index.php?page=pagename www.example.com/pagename 2- if tried add slash @ end shows me page without images or styling mean www.example.com/pagename => works www.example.com/pagename/ => doesn't work that's :) for first part need 301 rule this: rewritecond %{the_request} /index\.php\?page=([^\s&]+) [nc] rewriterule ^ /%1? [r=301,l] for second part use absolute path in css, js, images files r
Read more