Sep 30
applications.rb implements :before_filter that will
model for actions: ‘action_permissions’
model for user permissions: ‘user_permissions’
the session level user permission variable: ‘user_permission_sum’ using the previously discussed base2 sum of all allowed permissions .
check that the user can execute the controller/action using ‘permission_token’
