On Wed, 15 Dec 1999, Oliver Frommel wrote:
while trying to implement a Zope product encountered the following problem: I think I understand the concepts of both users and roles, roles being a set of permissions. In this connection groups (as in Unix) are implemented just by putting the Zope user folders in the right place. When I want to have a more centralized user administration I'd need something like a group attribute for it, so I could give certain roles (in principle I'd just need an editor role) dependent on the user belonging to a certain group. AFAIK none of the products USerDB, GUF oder etcUserFolder provides hooks for this.
A role *is* a group. You grant arbitrary priviledges to a role, and all users with that role (members of that group) will also get those privs. -- ___ // Zen (alias Stuart Bishop) Work: zen@cs.rmit.edu.au // E N Senior Systems Alchemist Play: zen@shangri-la.dropbear.id.au //__ Computer Science, RMIT WWW: http://www.cs.rmit.edu.au/~zen