This project is read-only.

Viewer Role

Topics: Business Logic Layer
May 5, 2008 at 2:51 PM
This may be a very interesting request... Blogs in general are for all public, allowing any and all that stumble upon your blog full access to read all content. What if for the security conscious, you only want selected individuals to have access to your blog?

For example you post information about a vacation home you own, there for you are not always there and someone could locate this vacation home and knowing you are not always there, be more enabled to rob this location with out being noticed. Or post the name, birth date,etc of your latest child, and through other posts know the city you live and determine the hospital and who knows what else and now the reader has enough to steel the identity of your child.

There are some of us out there that think about stuff like this and are concerned about this security. I added a role to the roles.xml file, but the role did not show up as a choice when adding new users. There are Administrative and Editor roles, can we add Viewer role and not display any postings unless the user is logged in and has a minimum or Viewer role.