Changes between Version 30 and Version 31 of Modules/Auth
- Timestamp:
- 2011-01-18T13:58:05+01:00 (14 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Modules/Auth
v30 v31 103 103 Proposed solution 2: attach permissions to any 'Identifiable' 104 104 * There is an interface !RowLevelSecurity that contains fields [owner: xref->!MolgenisUser, shareRead: xref->!MolgenisGroup, shareWrite: xref->!MolgenisGroup]. [[BR]]Thus a user can choose to share data with the selected groups or individuals. 105 > R1: We don't think it is desireable to change the entities by adding three mref's. 106 > R2: Interfaces currently cannot contain mref's. Why? 105 > R: We use an abstract entity Authorizable with these three xref's. If users want to use row level security on certain entities, these have to implement Authorizable. 107 106 * Only the owner can change shareRead and shareWrite properties. 108 107 * For sharing one can only choose !MolgenisRole that the owner is member of, i.e. you can only choose groups you are part of or individuals you can find (i.e. that have given you read permission on their profiles).
