Suggest you do the following:
?1. Wrap all CRUD actions in a data access layer.
?2. In the data access layer, use the functions like "CheckXYZRole()" (each role you make gets an action like that made) to validate that the current user has the permissions you require if you are using roles, or do a lookup against a table (check to see if the current user is the "project leader" or whatever) and throw an exception or otherwise fail if the user does not have the needed permissions.
?J.Ja
?1. Wrap all CRUD actions in a data access layer.
?2. In the data access layer, use the functions like "CheckXYZRole()" (each role you make gets an action like that made) to validate that the current user has the permissions you require if you are using roles, or do a lookup against a table (check to see if the current user is the "project leader" or whatever) and throw an exception or otherwise fail if the user does not have the needed permissions.
?J.Ja