pj
12/22/2022, 10:52 AMdefinition patient {
relation owner: user
relation doctor: user
relation technician: user
permission read = owner + doctor + technician
permission write = owner + doctor + technician
}
But I would like to verify the user right inside the read / write permission.
I don't know if the right must be define in the user definition or somewhere else. Is there a design pattern for user right ?
thanksvroldanbet
12/22/2022, 11:02 AMpj
12/22/2022, 12:25 PMvroldanbet
12/22/2022, 6:00 PMdefinition platform {
relation patient_reader: user
relation patient_writer: user
relation read: patient_reader + write
relation write: patient_writer
}
definition patient {
relation platform: platform
relation owner: user
relation doctor: user
relation technician: user
permission read = write + platform#read
permission write = owner + doctor + technician + platform#write
}
folder
definition, and add relations there that denote a user has access to all elements in the folder
. This is essentially the same.pj
12/23/2022, 7:52 AMdefinition platform {
relation patient_reader: user
relation patient_writer: user
relation patient_creation: user
relation manage_all_user: user
relation prescription_creator
.....
permission patient_read: patient_reader + write
permission patient_write: patient_writer
.....
}
I have lot of possible right for the users of my application. I would like to be sure where I have to store them.vroldanbet
12/23/2022, 12:15 PM