Hello zopers, I have a situation like this : A repository filled with custom class instances ie: DATA folder( w/ Catalog) A script that catch and sort a Catalog Query (get-selection) A dtml-doc that show the results from the script <dtml-in get-selection()> What I want is user w/ a specific role ie : custom_user To be able to : - create new instances - view and edit only those instances THEY have created Please can you point me any path to reach this goal ? It must have to do with the skip-unauthorized and special setting of the security tab (but wich ? The repository ? The script ? The dtml ?....) Thanx in advance.
Webmaster Expert RH wrote at 2003-3-20 12:31 +0100:
I have a situation like this :
A repository filled with custom class instances ie: DATA folder( w/ Catalog) A script that catch and sort a Catalog Query (get-selection) A dtml-doc that show the results from the script <dtml-in get-selection()>
What I want is user w/ a specific role ie : custom_user To be able to : - create new instances - view and edit only those instances THEY have created
Please can you point me any path to reach this goal ?
You protect the objects quite restrictively and provide access through scripts with an appropriate proxie role. This implies: You learn about Zope security (--> Zope Book) and proxie roles (--> Zope Book). Dieter
participants (2)
-
Dieter Maurer -
Webmaster Expert RH