[Zope-CMF] Permissions in my Plone Workflow

Mirna Callejas mirnacallejas@yahoo.com
Sat, 16 Mar 2002 16:34:42 -0600 

Some questions about permissions in my Plone Workflow and any other 'bug'...
I will try to explain of the clearest possible way for all.
Workflow environment that I want:
I'm manager and I can manage, view, change and access ALL.
The reviewer is as a member but he can "Review portal content".
A Member only can access by  password and can add his content, view, change
it, etc. View the members's roster and access only HomePage them and others
visibles contents, but not the private, neither pending. -And the member
creator first add private content and submit to pending or later retract and
converter in private- (OK, until this point I´ve been able to make it)
Only some details that I think are supposed to be easy but that they are
taking me much time...
Problems:
1. Before I visualized the list of the Reviewer but I don't know that I
chanded that no show it anymore. :(

2.Like a member I tried to add a document (upload a file html) and happened
something odd, when I tried to publish it appeared:
      u.js">
      (All the page and Our apologies... etc, etc. and 404 not found)
      (Traceback, etc, etc. NotFound)
      HTTP/1.1 200 OK Server: Zope/(Zope 2.4.3 (binary release, python
      2.1, win32-x86), python 2.1.0, win32) ZServer/1.1b1 Date: Sat,
      16 Mar 2002 20:48:02 GMT Content-Type: text/html Content-Length: 28429
      (And... again ALL the page with Publishing process tab show me his
form)
I want to back to folder_contents and the results is the same!!!
Later, I tried to publish and all show me ok. But I don´t want that this
happens again. :/

3. When member upload a file with a name which is 'reserved' appear an
error, this is all right, but when they click in OK button... They are
redirected to manage_main!!! Should I modify the template Site Error (it is
that I'll do) or the permissions? :?


Could somebody say me which permissions I should be granting erroneously?
I've Zope 2.4.3 and Plone 0.9.9
Below I described ALL that I´ve at Security Tab on CMF Site and
Security Tabs at states in plone_workflow :P

****************************************************************************
**At Security Tab on CMF Site:
Acquire permission settings? (All check)
Roles:
Anonymous:  (none check)
Manager:  (All check less "Review portal content")
Access contents information:  (All check less Anonymous)
Member: Access contents information
	Add Documents, Images, and Files
	Add Folders
	Add portal content
	Add portal events
	Add portal folders
	Add portal member
	Add portal topics
	FTP access
	List folder contents
  	List portal members
  	List undoable changes
	Reply to item
 	Request review
  	Set own password
  	Set own properties
  	Sign up for Managed Meetings
      Undo changes
	View
	View History
Owner:  (equal to member)+ Delete objects, Manage properties and users, Set
own password, and View management screens.
Reviewer: (equal to member)+  Access future portal content, Access inactive
portal content, Manage properties and users, *Review portal content*, Set
own password and View management screens.
**Also in Local roles I added a user give him Reviewer rol. And me, the
manager.
Or I maybe should change the configuration in the  Security tab inside
members folder?


pending PERMISSIONS: Acquire (none check) Manager Owner y Reviewer (All
check)                      Member (Modify portal content check)
          Destination state:    Permission(s):            Role(s):
hide	        private
publish       publish    	Review portal content      Reviewer
reject        private		Review portal content      Reviewer
retract       private		Request review		   Member
submit        pending		Request review		   Member

*private PERMISSIONS: Acquire (none check) Manager Owner y Reviewer (All
check)
          Destination state:    Permission(s):            Role(s):
hide	        private
reject        private		Review portal content      Reviewer
retract       private		Request review		   Member
submit        pending		Request review		   Member

publish PERMISSIONS: Acquire (none check) Anonymous and Member (Access
contents                      information and View check) Manager Owner y
Reviewer (All check)
          Destination state:    	Permission(s):            Role(s):
publish	  publish or remain 	Review portal content	   Reviewer
reject        private			Review portal content      Reviewer
retract       private			Request review		   Member
show		  publish 					   	  	   Reviewer

visible PERMISSIONS: Acquire (none check) Manager Owner y Reviewer (All
check)
          Destination state:    Permission(s):            Role(s):
hide	      private
publish	publish 	 	Review portal content	   Reviewer
submit      pending		Request review		   Member



****************************************************************************
Some details not elegants, I know but...
I hope this information be utility for some. And those that already know,
help us! ok?
Mirna Callejas
Web Director & WebDesigner
Edumedia, México.


_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com