Auth.subs.php should be broken up to Login and Authorization. Authentication is separate and should utilize an interface to allow for more authentication strategies (LDAP, OpenId, cookies, etc). The Authorization class should contain methods like allowedTo, boardsAllowedTo, etc.
Auth.subs.php should be broken up to Login and Authorization. Authentication is separate and should utilize an interface to allow for more authentication strategies (LDAP, OpenId, cookies, etc). The Authorization class should contain methods like allowedTo, boardsAllowedTo, etc.