Vibrant discussion about CSLA .NET and using the framework to build great business applications.
Yes . we will populate the permission table with the add, view ,update,delte etc permissions at object level .
samplet entry would be like this . id(identity),Permission Name
this way as many as activities you think , you can create them and here the beauty of the objectpermission table i.e point 4 , is that the objects are free to implement any of the activities listed above .so just maintain these tables and have fun with RBAC ,