Access Denied!


Submitted by mickey on Sun, 08/31/2008 - 22:46

Recently my team was tasked to revamp our current access controls. My team mate researched for RBAC - short for role based access control, which is one of the newer alternatives to the existing access controls.

Our implementation was we came up with a way to define arbitrary modules - meaning its up to the user of our system to come up with what she thinks are modules.

Our distributed system was implemented in a MVC - paradigm fashion, where we had displays, actions,  and templates. Our users can create a module "Generic Content" and they can add the BEAD pages for that - BrowseContent, AddContent, DeleteContent with their corresponding action classes.

Then later on when the user roles are created, we attach the modules that would become their permissions.

When a module does not exist for a created user role down the hierarchy - then that person having that user role will not have access to that part of the system.

I'd like to thank my pretty team mate Daine for her nice implementation of an RBAC system. She blogs too and can you check her out at  piglovescow.com.

Comments

Submitted by camila (not verified) on Wed, 02/24/2010 - 15:25.

hello camila here.pleased to see the cooperation of your team.its really great an let me say you are lucky.to made and set a good team is just like to renovate your room with oriental rugs.and you have decorated your life in fact.congrats.

 

Post new comment

The content of this field is kept private and will not be shown publicly.
CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
1 + 6 =
Solve this simple math problem and enter the result. E.g. for 1+3, enter 4.