Changes between Version 32 and Version 33 of BluePrintAuthorization
- Timestamp:
- 06/19/10 17:14:51 (15 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
BluePrintAuthorization
v32 v33 43 43 44 44 === Resource restriction === 45 * REST controller can be blocked via a Decorator45 * Bad: REST controller can be blocked via a Decorator 46 46 * we'd need to patch other functions, such as sync, which would be hard to maintain 47 * Full security policy (native web2py) can be invoked, but this is painful (based on protected by default & granted manually) & untested within S3 recently47 * Bad: Full security policy (native web2py) can be invoked, but this is painful (based on protected by default & granted manually) & untested within S3 recently 48 48 * Need a new method: open by default & restricted manually 49 49 * Option1: Use an {{{auth_permission}}} table similar to Web2Py 'full' but just for tables & with {{{group_id}}} as {{{multiple=True}}}