On Tue, Nov 12, 2002 at 03:25:28PM +0000, Hamish Lawson wrote:

I'm trying to understand how permissions work for CMF. I want to let only members (or reviewers or maangers) view documents. Restricting the 'View' permission to just members (etc.) seems to prevent the login page from being accessed. Which permission is the one that I should use for restricting viewing of documents?

"Access portal content". It's usually managed by workflow, not directly through the ZMI. Example: Go into portal_workflow, click the Contents tab, go into your default workflow, click the States tab, click Published, and select the permissions you want objects to have when they are published. Save changes, go back to portal_workflow, and click Update security settings. Voila, all your published content now has the settings you selected for that state. -- Paul Winkler http://www.slinkp.com "Welcome to Muppet Labs, where the future is made - today!"

Hamish Lawson writes:

I'm trying to understand how permissions work for CMF. I want to let only members (or reviewers or maangers) view documents. Restricting the 'View' permission to just members (etc.) seems to prevent the login page from being accessed. Which permission is the one that I should use for restricting viewing of documents? "View" is correct.

I would globaly restrict the "View" permission and give it locally to the objects necessary for the login process. This may (probably will) require that you customize them (bring them into the ZODB) in order to attach local security settings. Dieter