I’m trying to plan this Yii application, but i’m struggling with the logic of authentication.
The service will be pay by user so my idea was to make use of auth groups
The level’s of authentication i’ll need are.
Superadmin - There will only be one user (me) that will be in this group. I will be managing accounts and how many users an account can have, if the account is active/inactive.
admin - This is the main account for a customer where they can create/manage users and give them read/wright access to various things. they will be limited to the amount of users they can have (depending on what i set with the superadmin user). This user will have full access to all of it’s account data.
user - These accounts in this group are what the user in the admin group set. they will only be allowed access rights that have been set by the admin user.
All user’s tied to an account via a unique id.
I hope this makes sense, it’s confusing the hell out of me. I’m looking for any advice or the sort of logic i should be using?
thanks,
Nathan