[Zope3-dev] Re: a note on groups and roles

Phillip J. Eby pje@telecommunity.com
Mon, 25 Mar 2002 10:25:40 -0500

Previous message: [Zope3-dev] Re: a note on groups and roles
Next message: [Zope3-dev] Re: a note on groups and roles
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 10:06 PM 3/24/02 +0000, Florent Guillaume wrote:

>  - Roles are really groups of permissions.

No, they aren't.

A role is an application-domain relationship between a user and an 
application--domain object, which *implies* a set of permissions.

IMHO they are a critical, and *non-optional* feature of the Zope security 
model.

Previous message: [Zope3-dev] Re: a note on groups and roles
Next message: [Zope3-dev] Re: a note on groups and roles
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]