Thanks Jason. Now I'm looking for:
"User Level Authentication Solution Recipe available from the SecurityAssist Support page"
And in case, when I find it, it doesn't help with this question, I'll lay it out here as because of the time difference I can only ask you questions overnight...
I am trying to set up a password system for a medical research organisation and the client wants a very complex password system. There are many different user groups, ie
Advisory Board Members – access to ALL PAGES of the website
Scientific Committee Members – access to ALL PAGES
Operations Secretariat Members – access to ALL PAGES
TMC Members – password access to trial specific TMC and Steering Committee, Publications Page and News Page
Steering Committee Members/Trial Sites – password access to trial specific Steering Committee, Publications Page and News Page
Endpoint Adjudication Committee Members – password access to trial specific EAC, Publications Page and News Page
DSMB Members – password access to trial specific DSMB, Publications Page and News Page
AKTN Members – password access to Member Resources, Publications Page and News Page.
General public / nephrological community – access to non password pages only.
"Trial-specific" - There are about ten different trials. So there are ten TMCs, 10 steering committees, etc etc.
Except for the users with site-wide permissions, all the user groups are to have access to various files across various folders but no-one has access to all the files in any folder. I thought of setting up a folder for each user group, but that would require having duplicate files in many folders which would not be a good idea.
I'm feeling a bit overwhelmed at the moment - any ideas or pointers would be much appreciated!