Changes between Version 17 and Version 18 of S3/S3AAA


Ignore:
Timestamp:
01/17/11 10:21:09 (11 years ago)
Author:
Dominic König
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • S3/S3AAA

    v17 v18  
    6767=== Record Ownership ===
    6868
     69Permissions can be set separately for users owning a record (Owner ACL {{{oacl}}}) and for any other user (User ACL, {{{uacl}}}).
     70
     71Tables can implement a record ownership by adding two meta fields:
     72
     73  ||Field name||Type||Description||
     74  ||created_by||integer (reference auth_user)||ID of the user who has created this record||
     75  ||owned_by||integer (reference auth_group)||ID of the group (role) who own the record||
     76
     77These meta fields are contained in both {{{s3_authorstamp()}}} as well as {{{s3_meta_fields()}}}.
     78
     79A user is considered ''owner'' of a record if he has either created the record (user ID == {{{created_by}}}), or he is a member of the owner group ({{{owned_by}}} in user roles).
     80
     81In tables which do not define either of these meta-fields, ownership rules are not applied.
     82
     83If a user ownes a record, then the most permissive of the User ACL and the Owner ACL gets applied (i.e. setting the Owner permissions more restrictive than the User permissions has no effect).
    6984=== Controller Restriction ===
    7085