yes. for example:
# use the new group based authenticaion
auth=Auth(globals(),db)
# create a group
gid=auth.add_group('administrator')
# chose a user, for example the user logged in
uid=
auth.user.id
# make the user member of the group
auth.add_membership(gid, pid)
# give members of the group a certain permission, let's call it
"edit_somefield" on db.sometable
auth.add_perimission(gid,"edit_somefield", db.sometable)
# explain web2py what "edit_somefield" mean
db.sometable.somefield.writable=auth.has_permission
("edit_somefield",db.sometable)
Hope this helps. I wish I had time to document this better. Hopefully
in a couple of weeks.
Massimo