ACL Extension
0.3
|
This class manages the strategy used for the tree as well as the includes and provides the strategy-specific class-names
AclNode This is the base class for all Nodes of the trees, providing basic functionality
LGPLv2
AclObject Interface File This is the base interfasce for AclObjects defining the most basic operations
LGPLv2
This is the model class for table "{{action}}".
Actions represent the things you can do with an Acess control object: for example you can most often create, read, update and delete objects (also called CRUD) The actions which can be performed on a given object can be explicitely denoted by RestrictedActiveRecord::$possibleActions. Actions which are not in this list, if it is defined, will never be granted.
LGPLv2
The followings are the available columns in table '{{action}}':
RequestingActiveRecordBehavior Class File
This class serves as the behavior to be used for all "actors" in the program who have to per form actions on other objects
RestrictedActiveRecordBehavior Class File This class serves as a behavior for all the objects which have to control their access
This is a shortcut class to {Strategy}Aco. It does nothing but hiding the actual class to the user.
This implements an extended Access Control Filter for integration with ACL
This class simply exists to get a more or less "good-style" way of hiding the actual used class. Downside: actually no parameters are accepted for the constructor :) The rest should be quite self-explanatory.
All calls to this class will be redirected to the class pointed by $class
This is the model class for table "{{permission}}".
Permissions are the link between Access Control Objects, Access Request Objects and Actions. Permission define who can perform what on whom. Permissions (currently) work only positively, so if you deny rights you take back already granted rights, but you don't explicitely deny rights.
Especially if a user has a permission perform something on a specific object because he is the child of a class which has the permission, denying the permission to the user will not affect the permissions of the group.
LGPLv2
The followings are the available columns in table '{{permission}}':
RequestingActiveRecord Class File
This class serves as the base class for all "actors" in the program who have to per form actions on other objects
RestrictedActiveRecord Class File This class serves as a base-class for all the objects which have to control their access
This class is intended for objects which are located in a tree structure themselves if the tree-structure should also use the permission system. This way, the permission-tree is mirrored to the orginal tree.
This is a shortcut class to {Strategy}Aro. It does nothing but hiding the actual class to the user.