In an excerpt from this book from Packt Publishing, Martin Brampton look sat access control for content management systems and considerations that need to be made to make it effective.
Now we have some ideas about database, we quickly run into another requirement. Many websites will want to control who has access to what. Once embarked on this route, it turns out there are many situations where access control is appropriate, and they can easily become very complex. In this chapter we look at the most highly regarded model'"role-based access control'"and find ways to implement it. The aim is to achieve a flexible and efficient implementation that can be exploited by increasingly sophisticated software.
He looks a the different kinds of access control (discretionary access control, mandatory access control) and topics surrounding them like:
- Adding Hierarchy
- Avoiding Unnecessary Restrictions
- Special Roles
- Implementation Efficiency
- Real Difficulties
The tutorial finishes up with the start of a hierarchical access control system (including a few screenshots showing the tables and their relationships).