Click here to Skip to main content

Design and Architecture

 
AnswerRe: example of well designed softwares PinmemberEddy Vluggen7-Dec-12 2:07 
AnswerRe: example of well designed softwares PinmemberKeld Ølykke9-Dec-12 9:45 
QuestionWeb services theory PinmemberBytescream3-Dec-12 10:24 
AnswerRe: Web services theory PinmemberRaj Champaneriya3-Dec-12 18:41 
AnswerRe: Web services theory Pinmemberjschell4-Dec-12 8:17 
QuestionConsuming perl webservice in .Net Pinmemberernestohari1-Dec-12 22:38 
AnswerRe: Consuming perl webservice in .Net PinmemberEddy Vluggen2-Dec-12 2:57 
QuestionThoughts on Authorization in a Hierarchical User Structure. PinmemberBrady Kelly1-Dec-12 1:56 
I am busy developing a timesheet capture service which has a hierarchical user structure[1], where e.g. the top user in a hierarchy represents a distinct organization or related group of users. This user can then create more users under their self. This design has been laid down by my client. For authorization, I have interpreted this so that a user higher up in the user tree has access to all users below them in the tree, as well as entities owned by those lower users. This seems logical to me, as a user higher in the tree 'owns' users lower down. The client is not clear on whether this is the way to go, as in some situations it is ideal that users lower down have access to entities created by users above them in the tree. My client is unclear on what he wants here and expects some assistance in deriving a practical authorization scheme for this hierarchical user scheme.
 
Let me introduce the entity Customer to this scenario. Originally, a User owned Customers, so in my interpretation, a user higher up in the tree (more senior) had access to all customers owned by users lower down in the tree. This preserves the higher privilege of higher users, but prevents a more senior user creating customers for more junior users to work on. Now I have to change this one user to many customers relationship to many users to many customers, complicating things somewhat.
 
I'm not asking for a solution here, but some input and maybe suggestions or warnings for proceeding to try and devise a working authorization scheme for this complex matrix of user trees crossed with customer trees.
 

[1] Many other entities are also hierarchical, but not yet relevant here.
AnswerRe: Thoughts on Authorization in a Hierarchical User Structure. PinmemberEddy Vluggen2-Dec-12 2:56 
GeneralRe: Thoughts on Authorization in a Hierarchical User Structure. PinmemberBrady Kelly2-Dec-12 3:06 
GeneralRe: Thoughts on Authorization in a Hierarchical User Structure. PinmemberEddy Vluggen2-Dec-12 3:34 
QuestionA MEF Question - Refering base classes without adding reference to a dll. PinmemberJohn T.Emmatty29-Nov-12 22:25 
AnswerRe: A MEF Question - Refering base classes without adding reference to a dll. PinmemberEddy Vluggen1-Dec-12 5:30 
QuestionHand Gesture Recognition System PinmemberMember 916988728-Nov-12 3:00 
AnswerRe: Hand Gesture Recognition System PinmemberEddy Vluggen1-Dec-12 5:27 
QuestionMoving code from a Window/UserControl to outside in order to make it reusable! PinmemberRags151227-Nov-12 6:48 
AnswerRe: Moving code from a Window/UserControl to outside in order to make it reusable! PinmemberEddy Vluggen1-Dec-12 5:25 
GeneralRe: Moving code from a Window/UserControl to outside in order to make it reusable! PinmemberRags15129-Dec-12 4:46 
Questionhow to show database table in a class diagram PinmemberQobacha24-Nov-12 22:49 
AnswerRe: how to show database table in a class diagram Pinmemberjschell25-Nov-12 5:05 
AnswerRe: how to show database table in a class diagram Pinmembermanoranjan25-Nov-12 5:46 
AnswerRe: how to show database table in a class diagram PinmemberVishwaKL27-Nov-12 20:51 
GeneralFile Directories Pinmemberstrrom78-Nov-12 17:03 
GeneralRe: File Directories PinmvpRichard MacCutchan8-Nov-12 23:41 
GeneralRe: File Directories Pinmemberstrrom79-Nov-12 18:08 

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Rant Rant    Admin Admin   

Use Ctrl+Left/Right to switch messages, Ctrl+Up/Down to switch threads, Ctrl+Shift+Left/Right to switch pages.


Advertise | Privacy | Mobile
Web02 | 2.8.140721.1 | Last Updated 1 Aug 2014
Copyright © CodeProject, 1999-2014
All Rights Reserved. Terms of Service
Layout: fixed | fluid