Difference between #1 and #2 of
ACL and RBAC

Revision #2 has been created by zeroByte on Jun 29, 2012, 9:32:19 PM with the memo:

layout
« previous (#1) next (#3) »

Changes

Title unchanged

ACL and RBAC

Category unchanged

How-tos

Yii version unchanged

Tags unchanged

ACL, rbac, Tree structure, authorization, security, scalability

Content changed

[...]
This HowTo assumes that you have a smattering of ACL in general and of how [the acl-extension](http://www.yiiframework.com/extension/acl/ "the ACL-Extension") works basically. It will introduce you into the abstract and give you a hint on how to use Business-Rules. If you have in-depth questions, please refer to the extension documentation.
Using ACL in an RBAC-manner cannot and should never obscure the fact that the underlying system is still ACL-based. In fact, the Business-Rules are just another layer in the permission-check plan.

Layers in ACL (at full extend):
1. General Permission Lookup
   2. Regular ACL-Permission lookup  
3. Business-Rules lookup

Please note that Business-rules are indeed independent of the first layer, although it may be more convenient to combine them.
[...]
0 0
4 followers
Viewed: 20 483 times
Version: 1.1
Category: How-tos
Written by: zeroByte
Last updated by: kevinkorb
Created on: Jun 29, 2012
Last updated: 5 years ago
Update Article

Revisions

View all history