Posted by Michael Vilain on 11/28/06 20:45

In article <pc7wt5ffv72.fsf@panix1.panix.com>,
Lewis Perin <perin@panix.com> wrote:

> Is anyone aware of robust software, suited to a preexisting PHP
> application, that handles permissions for various types of requests by
> role rather than user ID? I'm speaking of maintaining/editing the
> permissions and deciding on the requests, but either "half" of the
> solution might be useful.
>
> Sorry, but adopting a whole application framework is out of the question.
>
> /Lew
> ---
> Lew Perin / perin@acm.org
> http://www.panix.com/~perin/babelcarp.html

If you're running php scripts in the command line rather than on a
web-server, you might benefit from running from within RBAC (on Solaris,
no?) or sudo (close enough to have 7 alleals in common).

But if you're running from the web, your process runs under the web
server's UID. I fail to see how RBAC might help in that situation.

What are you attempting to achieve here rather than asking about a
specific solution?

--
DeeDee, don't press that button! DeeDee! NO! Dee...

• Next in forum: MI5 Persecution: .net magazine article
• Prev in forum: Re: command-line PHP problem
• Thread view: Re: Role-based Access Control (RBAC)

[Reply to this message]