Saying that I've got: 1/ categories: category_1, category_2, category_3 ... each category has many posts 2/ user roles: role_A, role_B, role_C
I know that I can use phalcon built in ACL system to define role access to controllers / actions.
But how can I set access restrictions one some particular categories ? Something like this:
1/ role_A can read post in categories category_1, category_2 (saying they are reader on this categories) 2/ role_B same as role_A but can also CRUD his own posts in category_1 (saying this role is publisher in this category) and read posts in category_3 3/ role_C has full CRUD rights on categories category_2, category_3 (saying role-C is admin on category_2 and category_3) 4/ ....
My first thought is to use cross ( many_many) tables between roles and categories: 1/ category_reader 2/ category_pulisher 3/ category_admin
Well ... I did not know if it's the best way to achieve what I want and I do not know how to implement this !
All advices are welcome.