The fastest easiest way to get it right.

Pre-Defined Groups

Andromeda contains two pre-defined groups. In the YAML file we refer to one as the "$LOGIN" group, and another as the "usermaint" group.

The $LOGIN Group

Andromeda is a deny-by-default system, meaning that by default all groups are denied access to all tables. However, on a public website you always need to grant read-only access at least to public users who are on the site but have not logged in. The most obvious example would be an eCommerce site where the users must be able to read the ITEMS table.

The Andromeda programmer can grant permissions to these public users by making assignments to the "$LOGIN" group: 

module inventory:
    group $LOGIN:
        permsel: Y
        permins: N
        permupd: N
        permdel: N
        
# Or, on a specific table:
table items:
    group $LOGIN:
        permsel: Y
        permins: N
        permupd: N
        permdel: N

The USERMAINT Group

All Andromeda applications contain a group called "usermaint". Members of this group are allowed to create and delete users and give them group permissions. Any user in this group has effective control of the entire application, because they can create users with any privilege level.

You do not normally assign any permissions to members of this group.

User Comments

There are no user comments yet on this page.

Add A Comment

Comments will not appear until after they are moderated. Comments are usually moderated within a few hours on weekdays, but may take longer on weekends and holidays.

Name or nickname: (This will appear with your comment)


Email (this will never be displayed)


Enter your comment here. Use [b] and [/b] for bold, [i] and [/i] for italic, and [pre] and [/pre] for code samples. All literal HTML and PHP that you enter will be escaped out and displayed as you enter it.


Home |  Documentation |  Download |  Credits |  Contact |  Login
Andromeda © Copyright 2004-2010, Licensed under the GPL Version 2