Create YesodPermissions type class #236

Closed
meteficha opened this Issue Jan 24, 2012 · 7 comments

Projects

None yet

3 participants

@snoyberg
Member
snoyberg commented Jun 5, 2012

Should we try to tackle this in Yesod 1.1?

@snoyberg
Member

@meteficha @gregwebs Do you think it's worth trying to make this change for 1.1? Do we have an idea of a good approach to use?

@gregwebs
Member

The current suggestions are still lacking in flexibility. My ideal implementation lets you write code like the following and need very few recompiles.

whenM (can user Delete resource) (destroy resource)

Note that this is resource based, not route based. But a route based permission can be built on top of it.

A user has permissions in the database. A permission is a list of roles plus application specific data. The application specific data (plus application specific code) can help determine if there is permission for the type of resource based on the roles the user has.

Something to think about :) Something is probably better than nothing, and nothing is required for the release.

@snoyberg
Member

Have there been any thoughts on how to proceed here?

@snoyberg
Member

No progress on this, closing.

@snoyberg snoyberg closed this Aug 29, 2014
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment