Hi All,
I'm specking out building a new website from the ground up. One of the core features is the authorization to view pages. The pages are in them selves dynamic. It's not going to be as simple as a static group/role-based solution. We haven't chosen an end platform yet, either.
An example to view a page might be: 1) the user must belong to their parent company 2) the parent company must have been granted partner permission to another company (by that other company) 3) and then the user can view some detail shared between the companies if that user's of a particular role.
This is only one of many sample authorization rules that will need to be implemented.
Now, in the past I've built tons of custom things that do something like this with custom SQL and the like, and even built complex rule engines to provide a lot of this.
However, I'm sure there's gotta be some good libraries out there to manage this.
Notice, I haven't specified a platform. We've built things in PHP, Java, .NET, and Python. I've been looking at Zend's ACL APIs, but that looks a little lacking. I'm also looking at custom Authorization modules and memebership in ASP.NET....
The key for this project is that it needs to be built quickly (aren't they always)? So anything out of the box, is good. I'm probably favoring a .NET platform more, but I'd like to keep my options option.
(I'll be making another post about Workflow solutions, since this application will involve a lot of workflow, passing takss among people, but I'll probably open another question for input on that one.)
Let me know if I should clarify my question some more.