Security

Elephant security system is used to isolate contents based on user granted permissions. The content is generated at server side based on this security system.

Basic security points

  • User social group syndication.
  • User roles, mainly granted through social groups.
  • User permissions, defined by roles.
  • User fuzzy roles, discovered by user activity.

isInRole method

Elephant provides isInRole convenience method to check user assigned points. The method takes as string parameter with a permission checking syntax. The parameter are the ORed permissions to be checked, separated by |.

Suppose a sample user assigned to Privileged Customers social group. This social group grants the DossierParticipant role, which carries dossier=list,show permissions.

Check type

Syntax

Example

Permissions

permission:detail

dossier:list

Roles

#role:on

#DossierParticipant:on

Syndications

@syndication:on

@customer:on

Fuzzy roles

@fuzzyrole:is

@worker:is

When more than one check, they can be ORed: dossier:list|@customer:on.

Printer version
English03/17/21 04:15Lluís Turró Cutiller