Guess you misunderstood. You CAN create the role, in this case "db_user" at the level you want to have control of the user's access (as in "test" in your example) OR, in any level above that object "test", such as root level. You did it at root level , that is OK. Then, AT THE LEVEL WHERE YOU CREATED THE ROLE, "test" or "root" level as propper, get into the security tab and check the following permissios for the role "db_user": Access contents informations Use Database Methods View Optionally uncheck the same permissions for the Anonymous role -at that level in case don't want/need public access to that object. Well, guess this clarifies the issue. Felipe Barousse Bufete Consultor de Mexico - Piensa Technologies. www.piensa.com
Message: 19 Subject: Re: [Zope] Re: Zope Users and Roles From: Juan Pablo Romero <jpablo@perl.ajusco.upn.mx> To: zope@zope.org Date: 18 Apr 2002 14:44:31 -0500
Hi
As you said, I added the role 'db_user' at root level.
Now, where do I get the secury tab *for the db_user role*?
I mean, I have tabs for all zope objects, such as folders, files, etc., but not for a role.
Juan Pablo
Ups, I think I didn't explain myself clearly. What I want is to restrict access to some specific file ('insert_field'). So, I created a user at some level above the location of the file, and at root level created a role ('db_user'). Now I don't want to restrict access to *all* files below the role level; that's way I shouldn't modify the permissions of that folder. According to the zope book, I only need to modify permissions of the object I do want to restrict access. I did as you suggested, that is, changed 'view' field of 'insert_field' (selected entry from 'db_user' role and deselected from all other columns). At this point I understand zope should allow access to 'insert_field' only to users with the 'db_user' role. But it doesn't. Oddly, If I assing 'manager' role to the user (instead of 'db_user'), and change the 'view' line of 'insert_field' (check 'manager' entry, uncheck all other columns), then zope does ask for password, and accept the user (exactly what I want, but for 'db_user' role). It seems that user created roles don't get the same treatment than 'system' roles. Thanks for your patience. Juan Pablo On Fri, 2002-04-19 at 00:34, Felipe E. Barousse B. wrote:
Guess you misunderstood.
You CAN create the role, in this case "db_user" at the level you want to have control of the user's access (as in "test" in your example) OR, in any level above that object "test", such as root level. You did it at root level , that is OK.
Then, AT THE LEVEL WHERE YOU CREATED THE ROLE, "test" or "root" level as propper, get into the security tab and check the following permissios for the role "db_user":
Access contents informations Use Database Methods View
Optionally uncheck the same permissions for the Anonymous role -at that level in case don't want/need public access to that object.
Well, guess this clarifies the issue.
Felipe Barousse Bufete Consultor de Mexico - Piensa Technologies. www.piensa.com
Message: 19 Subject: Re: [Zope] Re: Zope Users and Roles From: Juan Pablo Romero <jpablo@perl.ajusco.upn.mx> To: zope@zope.org Date: 18 Apr 2002 14:44:31 -0500
Hi
As you said, I added the role 'db_user' at root level.
Now, where do I get the secury tab *for the db_user role*?
I mean, I have tabs for all zope objects, such as folders, files, etc., but not for a role.
Juan Pablo
participants (2)
-
Felipe E. Barousse B. -
Juan Pablo Romero