Menu
▾
▴
Re: [Openinteract-help] Separate security tables?
|
From: Vsevolod (S. I. <si...@cs...> - 2003-11-29 16:02:54
|
Chris, While I am at it, a suggestion. In SPOPS::_w, would it not make sense to print the whole stack, and not just the caller's name? Because it's always called from SPOPS::AUTOLOAD, which is not much help in debugging. > Well... the code ain't perfect, but some folks have been using SPOPS on > fairly large projects and AFAIK never had a problem like this. Sorry, I did not imply that the code is not good. More worried about myself changing things in the database manually and screwing something up. > I think > one of the keys with object-level security is to use it sparingly. Most > of the time application-level security will suffice -- normally if a > user can edit one record she can edit another. My intranet applications actually contain data for many different users, and in some cases users should not even see each other's data. Plus there are operator access rules, department head access rules and all kinds of fun. I used the action security system from Metadot, but they had no notion of data security. But you are right, I may be going too far sometimes. I'll keep the balance in mind. Simon -- Simon (Vsevolod ILyushchenko) si...@cs... http://www.simonf.com America's business leaders simply don't want to think about complex technology issues - they want to think about golf. Microsoft promises them that. Andrew Grygus, www.aaxnet.com |
