I'm working on a rather large app, where we have more than 7 user roles, each of which will have permission to access different parts of the application.
Now the User/Admin system is falling short so I need to redefine the access control system.
I am thinking of coding something like cakephp uses, with aro's and aco's but is rather unmantainable to have a table with every single possible route and grant access to roles.
what is the best way to manage access control? how do you do it?
Thank you.
I'm working on a rather large app, where we have more than 7 user roles, each of which will have permission to access different parts of the application.
Now the User/Admin system is falling short so I need to redefine the access control system.
I am thinking of coding something like cakephp uses, with aro's and aco's but is rather unmantainable to have a table with every single possible route and grant access to roles.
what is the best way to manage access control? how do you do it?
I don't, but you could try one of these:
Check out restful authentication plugin, and the role authentication plugin that works as an addition
I am actually using the restful_acl, and restul_authentication plugins, but they are really falling short
max wrote:
I am actually using the restful_acl, and restul_authentication plugins, but they are really falling short
Check out this tutorial on restful_authentication, maybe it could give you some ideas on access control.
http://railsforum.com/viewtopic.php?id=14216
mike
May I ask how? Can I help?
Keep up to date with Rails on Twitter and This Week in Rails
Policies: Conduct, License, Maintenance, Security, Trademarks