Nuxeo mailing list archives
[CPS-devel] Where to define the roles allowed to access
Joachim Schmitz
js at aixtraware.de
Tue Jul 18 22:50:50 CEST 2006
To reply to my own post:
I investigated the problem a little deeper. It is caused by using the
method context.orderObjects(), which is protected by the "Manage
properties" permission. I gave this permission to the SectionManager,
but still the browser login box pops up, which should not happen at all.
Further investigation showed, that I also need the permission
"Change subobjects order" which is not mentioned in OrderSupport.py at
all. How would I find such things, except with try and error ?
Joachim Schmitz schrieb:
> hi,
>
> if I access our portal as a user which has no Manager role I get the
> following traceback from verbose security:
>
> Unauthorized: Your user account does not have the required permission.
> Access to 'edit' of (StudyLevel at
> /srp/campus/academics/AGR/AEE/certificates/BAGAEE/1004528/650171125__0001)
> denied. Your user account, depman1, exists at /srp/acl_users. Access
> requires one of the following roles: ['Manager']. Your roles in this
> context are ['Anonymous', 'Authenticated', 'Member', 'Owner',
> 'SectionManager', 'SectionReader', 'SectionReviewer'].
>
> The roles are exactly as I want them. I am wondering where do I define
> the required roles in CPS so that for example SectionManager is one of
> them ?
>
> Any hint is welcome.
>
>
--
Mit freundlichen Grüßen Joachim Schmitz
......................................................................
AixtraWare eK ..Joachim Schmitz ..www.aixtraware.de ..t: +49-2464-8851
Hüsgenstr. 33a .....d-52457 Aldenhoven .............f: +49-2464-905163
More information about the cps-devel
mailing list
This list archive provided by Nuxeo, the
leaders of open source ECM.
Check out the Nuxeo 5 open source,
standards-based ECM project.