In researching how to implement customized security for my product, I have seen two ways to approach this. The first is through the __ac__permissions and the second is through the use of the ClassSecurityInfo.

In attempting the first way, I declared the following in my class:

   __ac_permissions__= Folder.__ac_permissions__ + (
      ('View',
          ('Administrator', 'Manager', 'Custodian', 'Restricted Access'),
      ),
      ('Access contents information',
          ('Administrator', 'Manager', 'Custodian', 'Restricted Access'),
      ),
      ('View management screens',
          ('manage', 'manage_main', 'manage_workspace',),
          ('Administrator', 'Manager', 'Custodian', 'Restricted Access'),
      ),

   )

Nothing spectacular here, however, the Custodian can't get access to any of the management screens. I am pulling my hair out over this one.

What am I doing wrong? Should I be using the ClassSecurityInfo instead? Does anyone have a good resource that will show me how to go about implementing security?

Thanks in advance!!