Hi, I need a fine grained permisssion for a certain category of (authenticated) users. Defining a role/permissions mapping is not enough : Each authenticated user is granted to proceed operations up to a certain amount, depending on his/her supposed skills. When the user attempts to proceed an operation that exceeds that amount, the permission for some objects/methods must be denied. Of course, I need to make my own user folder for this (exUserFolder based ?) Many thanks for any pointer that may help me to achieve this while keeping as "standard" as possible within the Zope security standards (using the roles/permissions ... stuff) Cheers -- Gilles Lenfant Pilot Systems - 66, rue de Provence - 75009 Paris Tel : +33 1 44 53 05 55 - www.pilotsystems.net Hébergement Zope et Plone gratuit - http://www.objectis.org