Uploaded image for project: 'InvoicePlane'
  1. InvoicePlane
  2. IP-639

Add role based access control (RBAC)

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Duplicate
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Clients / Users
    • Labels:
      None

      Description

      1. Define actions like:
        1. configure system
        2. manage products
        3. create quotes
        4. delete quotes
        5. create invoices
        6. delete invoices
        7. ...
      1. Assign these actions to roles
      2. These actions are then passed as some datastructure to the ``userdata`` of the logged in user.
      3. Methods ( Controllers, Views) could check if the currently logged in user has the necessary action.

      Are there decorators in PHP? Then we could easily implement this with a decorator, that checks if the user has the necessary allowed action. This would heavily reduce the necessary code. 

      Yes, there obviously are. But honestly they look extremely complicated to implement. :-/

        Gliffy Diagrams

          Attachments

            Issue Links

              Structure

                Activity

                  People

                  • Assignee:
                    Unassigned
                    Reporter:
                    cornelinux cornelinux
                  • Votes:
                    0 Vote for this issue
                    Watchers:
                    2 Start watching this issue

                    Dates

                    • Created:
                      Updated:
                      Resolved:

                      Structure Helper Panel