panSL main page

panSL language reference. Table of contents.


Describes different roles relevant in connection with AccessType.

The roles recognized, in increasing order of restrictions regarding access,
are Anonymous, Everyone, Owner, Administrator, Nobody

Role is often specified together with an AccessType like Create, Read, Update, Delete in
a single keyword. Such a combination is called an AccessRole.

Field nameDescription


In an Implementation like MyLittleDatabase administrator access is needed in order to change an existing panSL-schema.

By specifying AccessRole as Administrator it is also possible to extend the Administrator-concept to include
access to properties in the database.


Any entity, also entities not authenticated.
Access granted to Anonymous means access is given without requiring any log in.

Often Read-access could be granted to Anonymous in order to facility easy access to a web-database.


Any entity able to log in, that is any entity that has been recognized by an authentication process.

Note that Everyone does not include Anonymous users. That is, if you specify Everyone-access then the user of an ApplicationImplementation still
has to perform a "log in" in order to identify himself before access is given.


In access-terms this means that no entity has access. This is usually supplied with access for a specific property that is usually a group of persons.

For instance, access to the entity Money_transfer may in general be given to Nobody supplemented with specific access given to a property designating
a group of persons working in the accounting department.


The owner of a given entity, that is the entity which created the given entity.

Owner also includes "Self". That is, if a log in is performed then the entity recognized is regarded as its own owner,
in addition to the entity by which it was actual created.

If Create-access at root-level is given as Owner, then Everyone is considered to have Create-access

panSL language reference. Table of contents.

More samples available at

Last updated 2012-05-02