User knows its roles, can you ask it? What would the question be?
--
The only way to go fast is to go well.
---
You received this message because you are subscribed to the Google Groups "Clean Code Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to clean-code-discu...@googlegroups.com.
To post to this group, send email to clean-code...@googlegroups.com.
Visit this group at http://groups.google.com/group/clean-code-discussion.
User knows its roles, can you ask it? What would the question be?
On 18/09/2013 10:22 PM, "Georgef" <feke...@gmail.com> wrote:
This is the scenario:--
A have a user which can have 1..n roles, each role can have 1..n permissions.
Permissions like 'can_read_article', 'can_edit_article', etc...
Where do I handle the authorization process for my user.
So the delivery layer passes along the user credentials and the permissions to the application. From there which part of the application should check whether the user has authorization to perform that interaction?
The only way to go fast is to go well.
---
You received this message because you are subscribed to the Google Groups "Clean Code Discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to clean-code-discussion+unsub...@googlegroups.com.