Changeset 398 for trunk/bin

Timestamp:

Apr 2, 2012 5:42:09 AM (12 years ago)

Author:

anonymous

Message:

 

File:

• trunk/bin/acl.cli.php (modified) (2 diffs)

trunk/bin/acl.cli.php

@@ -230 +230 @@
 This script must be run in the common site directory (i.e. the parent
 directory of the document root). DB credentials are retrieved from:
-global/db_auth.inc.php so this file must exist. Further more this script
+global/db_auth.inc.php so this file must exist. Furthermore this script
 must be executed as the owner of the db_auth.inc.php file.
 
@@ -236 +236 @@
 Request Objects, ACO - Access Control Objects, and AXO - Access Xtra
 Objects. These are most often used as a USER -> ACTION -> OBJECT model,
-but can just as easily be SPICES -> CUISINES -> DISHES A privilege is
+but could just as easily be SPICES -> CUISINES -> DISHES. A privilege is
 allowed if a user (ARO) can perform an action (ACO) on something (AXO).
-For example, Bob can edit article 4. If the AXO if omitted, this becomes
-"Bob can edit" (period).
-
-Each access object is stored as a node in hierarchical tree structures. A
-permission granted to a node is applied to all its children. If a child
-node is specified a different permission that is more specific that
+For example, with an `ARO->ACO->AXO` of `Bob->edit->4`, Bob can edit article 4. 
+If the AXO were omitted (i.e. just `Bob->edit`), this becomes "Bob can edit" 
+(he can edit any object).
+
+Each access object is stored as a node in hierarchical tree structures. 
+A permission granted to a node is applied to all its children. If a child
+node is specified a different permission that is more specific than
 anything on the branch it will take precedence. If no permission is
 specified, root is used for that object. Root, in this case, means