[erlang-questions] Is it possible to define group in erlhive?

Ulf Wiger ulf@REDACTED
Fri Jan 26 08:21:23 CET 2007


Den 2007-01-26 07:07:23 skrev Caoyuan Deng <dcaoyuan@REDACTED>:

> I took a look at the USER_GUIDE of erlhive, and is wondering if it's
> possible to define group level access control for a group of users.
>
> Thanks.

(This question is better posted on the erlhive-devel mailing
list. You can find it via http://erlhive.sourceforge.net)

Currently, there is no such thing as general group-level access
control. The basic access control mechanisms are public and
private data and public and private modules. I would like to
keep it that way.

However, in the blog example, properties are used to implement
custom access control. In:

http://erlhive.svn.sourceforge.net/viewvc/erlhive/lib/erlhive/examples/blog/src/flexiblog.erl?revision=54&view=markup

you can see how it's done. The flexiblog module recognizes the
roles 'admin', 'author', 'reviewer', and 'reader', and uses the
authenticated user name to screen commands.

As all the blog data is stored in the private area of the
application owner, the only way to get to the data is through
the public API.

I did advertise a role-based access control module, and it
is still in the pipe, somewhere. My current priority is to
try to get ErlyWeb to work in erlhive. The main challenge
the access control module (which is a user-level module)
is not so much the logic, but figuring out how to make it
as transparent and "pluggable" as possible.

BR,
Ulf W
-- 
Ulf Wiger




More information about the erlang-questions mailing list