Hoang Pham Hoang Pham - 5 months ago 43
Python Question

Role-based security with Google App Engine and Python

I would like to ask what is the common way for handling role-based security with Google App Engine, Python?

In the app.yaml, there is the "login" section, but available values are only "admin" and "required".

How do you normally handle role-based security?

  • Create the model with two tables: Roles and UserRoles

  • Import values for Roles table

  • Manually add User to UserRoles

  • Check if user is in the right Roles group

Any other idea or any other method for role-based security, please let us know!

123 123

I suppose you could mark a role 'deleted', but then you still have data cluttering up all your user models until you clean them up manually. So I am curious to hear what others suggest.