|
At the moment we have a horrible hack in mod-users-bl, its MD has permSets that contain bits for the lower-level modules (users, login, etc), and the module has ModulePermissions for the same.
We need a policy that addresses questions like
- When do we use ModulePermissions - most likely not very often
- Which modules define the permissionSets - I would hope the UI, once they start making moduleDescriptors
- When do we refer to low-level permission bits, and when do we use the higher-level permission sets
Things are likely to get more confusing when we start piling multiple levels of logic modules on top of each other.
|