Knowledgebase
Least privilege by default
Posted by z Jean-jacques Jouanneaux on 26 August 2010 02:32 PM
|
|
Is the general practice to develop our applications as if the default access will be least privilege? That is, are we best to 'hide' everything by default in code that may be hidden – eg Admin buttons etc, then create a permission that 'shows' the object. It is a best practise to develop your application with the “least privilege by default” but this practise has a cost. | |
|
Comments (0)