[rt-devel] RT rights internals for immortals only :)
Ruslan U. Zakirov
cubic at acronis.ru
Thu Oct 9 11:31:45 EDT 2003
Hello. Jesse.
All day try to understand ACL, Groups, Rights, Principals with no hope
on success.
Some questions:
I. Table ACL:
1) ACL.PrincipalType could be == 'Group' and in this case
ACL.PrincipalId -> Groups.id, is this rught?
2) In other cases ACL.PrincipalId -> Principals.id?
3) Each row in this table it is '<Something> have <RightName> right on
object #<ObjectId>. This object have type <ObjectType>'. Is previose
right and how to figure out what is <Something>?
II. Table Principals:
1) First of all, it's bad naming ACL.PrincipalType and
Principals.PrincipalType
2) PrincipalType always =~ /Group|User/ ?
3) If select * from ACL A, Principals P where A.PrincipalType !='Group'
and A.PrincipalId = P.id and P.PrincipalType = 'Group'; not empty then
what such records mean?
III. Table Groups:
1) Where Groups <-> Groups links stored?
2) Where Groups <-> Users links stored?
3) How to define what <Instance> is mean?
Best Regards. Ruslan.
More information about the Rt-devel
mailing list