Hi,
I have created an ASP.NET MVC-application with entity framwork. Due to customer demands I will have to implement a privilege hierachy where different users should have/shouldnt have rights to list/view/edit different kind of objects. And in some cases we need to go even deeper to restrict users from editing a certain property on an object.
I have created a few roles, but they are more generic like a "SystemAdmin"-role, a "CustomerAdmin"-role e t c
To make theese more narrow privileges, is roles the day to go or is there something else I can use or should I create some kind of privileges on my own in the database?
Thans in advance.