[ Follow Ups ] [ Post Followup ] [ Discussions at the Paneris system node ]

Re: Site Access Control

Posted by TimP on Thu Sep 10 5:08:47 1998

In Reply to: Site Access Control posted by TimP pp SimonT on November 24, 1997 at 21:58:53:

Distribution: paneris@i-way.co.uk lurker@paneris.co.uk
I have put protection on the projects/iway
directory.

The DIRCON server is apache so the usual
protection was used as shown at http://www.dircon.net/support/encrypt.html.

This does not stop someone snooping around and discovering individual
invoices, but I don't believe it is possible to
learn the exact breakdown of project costs.

We still need to put some thinking into how
access control is to be acheived.
I think that it should be something based on roles,
but have no idea how to implement it as yet.

Role Responsibility

Commercial Liason
Technical Liason
Project Quality Control
Customer
Graphic Design
Browser

The rights that we want to control are:
Modify text
Input to text boxes
See anything
See specific projects non financial detail
See specific projects financial detail
See everything except financial
See everything
Add to specific project


etcetc .....

I am very sceptical about the need for an
access control system at all.



Follow Ups:



Post a Followup

Name:
E-Mail:
Subject:
Circulation:
alexh colinr jackm jennyp
keithh krugerd mikec mylesc
nicr outcaa paneris patickg
programmers timj timp williamc
williams
Message:

[ Follow Ups ] [ Post a Followup ] [ Discussions at the Paneris system node ]