I am new to DNN and am looking for how one sets up authorization scope (not page, module or resource-related authorization). In the applications I have developed over the years I have found most security issues are related to limit different users to different instances of the same objects. For example to limit sales people to customers within specific territories, or product managers to only products in their product lines or managers only to their employees, etc. Other categories include limiting user editing rights only to content they have authoried or someone in their group has created, etc.
I can't imagine a framework without this functionality, but I can't find it (this is my first experience with a framework I didn't develop myself so maybe my expectations are naive, but I hope not - the open source idea sure beats doing everything yourself).
I am also looking for field-level authorization for forms and content presentation (e.g., certain roles can see salary or cost and others don't see this column, etc.).
If it is not built in, are there any commercial modules that cover these functionalities? If not, are any others of you working on or interested in generic solutions to this issue?
I am also relatively new to .Net. Is this perhaps a .Net thing? Is anyone aware of other forums in the .Net world that disucss this issue?
Thanks in advance for any info.