Permissions and MVC

Posted by not-rightfold on Programmers See other posts from Programmers or by not-rightfold
Published on 2013-10-22T11:50:25Z Indexed on 2013/10/22 16:02 UTC
Read the original article Hit count: 303

Filed under:

design

|

mvc

|

permissions

I’m in the progress of developing a web application. This web application is mostly a CRUD interface, although some users are only allowed to perform some actions and see only some parts of views.

What would be a reasonable way to handle user permissions, given that some parts of views are not available to users? I was thinking of having a function hasPermission(permission) that returns true iff the current user has the given permission, although it would require conditionals around all parts of views that are only visible to some users. For example:

{% if has_permission('view_location') %}
    {{ product.location }}
{% endif %}

I’m fearing this will become an ugly and unreadable mess, especially since these permissions can get kind of complicated.

How is this problem commonly solved in web applications?

I’m considering using Haskell with Happstack or Python with Django.

© Programmers or respective owner

Related posts about design

What is difference between Interaction design, Visual Design, Web design, UX design, UI design, UI d

as seen on Stack Overflow - Search for 'Stack Overflow'
What is difference between Interaction design, Visual Design, Web design, UX design, UI design, UI development? BTB, link found below answered for UI Vs UX. http://stackoverflow.com/questions/1334496/difference-between-ui-and-ux >>> More
The Incremental Architect’s Napkin - #5 - Design functions for extensibility and readability

as seen on Geeks with Blogs - Search for 'Geeks with Blogs'
Originally posted on: http://geekswithblogs.net/theArchitectsNapkin/archive/2014/08/24/the-incremental-architectrsquos-napkin---5---design-functions-for.aspx The functionality of programs is entered via Entry Points. So what we´re talking about when designing software is a bunch of functions handling… >>> More
Logo Design Online: Process Of Hiring And Working With An Online Logo Design Company

as seen on Article City - Search for 'Article City'
Hiring an online logo design company is not easy these days; you will find hundreds of logo design companies on just click of a mouse. But it';s up to your decision making skills how you select a best... [Author: Gisselle Gloria - Web Design and Development - October 05, 2009] >>> More
OO Design - polymorphism - how to design for handing streams of different file types

as seen on Stack Overflow - Search for 'Stack Overflow'
I've little experience with advanced OO practices, and I want to design this properly as an exercise. I'm thinking of implementing the following, and I'm asking if I'm going about this the right way. I have a class PImage that holds the raw data and some information I need for an image file. Its… >>> More
Is there any guidelines to convert Table design to Div design keeping same cross browser compatible

as seen on Stack Overflow - Search for 'Stack Overflow'
Is there any guidelines to convert Table design to Div design keeping same cross browser compatible layout? >>> More

Related posts about mvc

ASP.NET MVC 3 - New Features

as seen on ASP.net Weblogs - Search for 'ASP.net Weblogs'
Introduction: ASP.NET MVC 3 just released by ASP.NET MVC team which includes some new features, some changes, some improvements and bug fixes. In this article, I will show you the new features of ASP.NET MVC 3. This will… >>> More
Migrating ASP.NET MVC 1.0 applications to ASP.NET MVC 2 RTM

as seen on ASP.net Weblogs - Search for 'ASP.net Weblogs'
Note: ASP.NET MVC 2 RTM isn’t yet released! But this tool will help you get your ASP.NET MVC 1.0 applications ready for when it is! I have updated the MVC App Converter to convert projects from ASP.NET MVC 1.0 to ASP.NET MVC 2 RTM. This should be last the last major change to the MVC App Converter… >>> More
Web Matrix released

as seen on Geeks with Blogs - Search for 'Geeks with Blogs'
Microsoft have now released Web Matrix (and ASP.NET MVC3 if you so inclined!) One signifcant utility is IIS Express which will replace Cassini It is worth noting that SP1 for VS2010 should be out in Q1. Links: http://www.hanselman.com/blog/ASPNETMVC3WebMatrixNuGetIISExpressAndOrchardReleasedTheMicrosoftJanuaryWebReleaseInContext… >>> More
Loading any MVC page fails with the error "An item with the same key has already been added."

as seen on Stack Overflow - Search for 'Stack Overflow'
I am having an intermittent issue that is appearing on one server only, and is causing all MVC pages to fail to load with the error "An item with the same key has already been added." Restarting the application pool fixes the issue, but until then, loading any mvc page throws the following exception: Event… >>> More
MVC HTML.RenderAction – Error: Duration must be a positive number

as seen on Stack Overflow - Search for 'Stack Overflow'
On my website I want the user to have the ability to login/logout from any page. When the user select login button a modal dialog will be present to the user for him to enter in his credentials. Since login will be on every page, I thought I would create a partial view for the login and add it to… >>> More