[Zope3-dev] Re: PAS vs pluggableauth
Max M
maxm at mxm.dk
Wed Sep 8 12:14:02 EDT 2004
Jim Fulton wrote:
> In PAS, principals are created for each request. The model in PAS is
> that principals are created from minimal information and then are scribbled
> on by various plugins. This model is extremely flexible, making it
> much easier, for example, to distribute things like group memberhip
> management.
Please call these groups something in the line of "PermissionGroups".
I have written a group like product for Plone, in the line of Lotus. In
fact it is just a relatively thin wrapper over a folder that makes it
easier to control local roles, and adds a new workflow.
http://www.mxm.dk/products/public/mxmWorkgroups/
But it is extremely usable as an end user tool, that content providers
and end users can manage themself.
The problem for my users is that there also is "group" concept in Plone.
For end users it is not natural to think of "groups" as a way of
handling permissions. Groups in that sense is really to complicated for
most end users. Workflows are a much bette tool.
End users will naturally tend to think of groups as "collaborative
spaces" where a group of members can share content and work together.
And it confuses the end users that there is both something called
"Groups" and "Workgroups" on their system.
If groups were called something in the line of "PermissionGroup" it
would be much easier to explain the difference to end users.
regards Max M
More information about the Zope3-dev
mailing list