[Zope3-dev] Re: role (contextual) services?l
Tres Seaver
tseaver at zope.com
Sun Apr 4 07:57:32 EDT 2004
Philipp von Weitershausen wrote:
> I also wonder if you got the concept of roles right. Roles are not like
> groups, but they represent responsibilities. A user can only be in one
> group,
'Fraid not; lots of security models have graphs for groups, rather than
pure hierarchies.
> but have more than one assigned role. How would you handle
> component lookup for a principal that has several roles?
+1 for leaving security considerations out of component lookup.
Tres.
--
===============================================================
Tres Seaver tseaver at zope.com
Zope Corporation "Zope Dealers" http://www.zope.com
More information about the Zope3-dev
mailing list