I am trying to figure out the best way to set up the model for what could be a moderately complicated authentication / ACL issue. I am trying to set up a kind of "single sign-on" for a web application, where the end user could be assigned one or more roles through one or more customers. I''m also trying to figure out which of the authentication packages might work best for this setup. A Customer represents a corporate entity that would pay to use a website. Each person represents an individual and has their own sign-on, and has one or more roles, either with a single customer or with multiple customers. Tables: PEOPLE id last_name first_name e_mail has_many people_roles CUSTOMERS id customer_name ROLES id role_name PEOPLE_ROLES person_id customer_id role_id For example: Johnny has Security Clearance Level 1 for Customer A Jane has Level 2 and Level 3 for Customer B, and has Level 1 for Customer A Thanks in advance-- -Jeff Wigal -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to rubyonrails-talk-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org To unsubscribe from this group, send email to rubyonrails-talk-unsubscribe-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
I would use Acts_As_Authenticated with ACL, if you goolge those two with "Ruby on Rails" you should be good to go. As for the account, just make a user belong to a company or account model to get more differentiation. Shai -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to rubyonrails-talk-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org To unsubscribe from this group, send email to rubyonrails-talk-unsubscribe-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
Shai Shefer wrote:> As for the account, just make a user belong to a company or account > model to get more differentiation.I''m not sure this will do what I''m looking for, since they could have one set of permissions within the context of one Customer, and another set of permissions with another customer. Any other thoughts? -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to rubyonrails-talk-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org To unsubscribe from this group, send email to rubyonrails-talk-unsubscribe-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
Jeff Wigal wrote:> Shai Shefer wrote: > >> As for the account, just make a user belong to a company or account >> model to get more differentiation. > > I''m not sure this will do what I''m looking for, since they could have > one set of permissions within the context of one Customer, and another > set of permissions with another customer. > > Any other thoughts?Oh, I think I get it... use AAA/ACL to control the "what you can do" and use a model to control what they see. Is that basically it? -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to rubyonrails-talk-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org To unsubscribe from this group, send email to rubyonrails-talk-unsubscribe-/JYPxA39Uh5TLH3MbocFFw@public.gmane.org For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---