Hi,
I'm not sure it's PHP related question but probably somebody can help me out...
My implementation of RBAC works as follows:
When a site visitor submits a form, say with his personal data, he starts an action i.e. person_update.
Judging by the visitors and the person's ids the visitor is assigned a role, say 'owner' and gets permission to update the record.
Also, this action person_update can be started by somebody who has a role of 'admin' or 'moderator'.
The problem is that 'owner' can not change some DB record fields like his login name and 'admin' or 'moderator' can. So I somehow need to get control over a particular DB field.
So the question is: is it possible to do inside RBAC model by creating new roles/actions and without implementing CRUD matrix for each field in DB?
Thank you,
