[Zope-dev] Permission Question
Andre Schubert
andre.schubert@km3.de
Tue, 14 May 2002 08:02:27 +0200
On Mon, 13 May 2002 21:16:24 +0200
"Dieter Maurer" <dieter@handshake.de> wrote:
> Andre Schubert writes:
> > i have i question on the permission-system of zope.
> > Lets say i have a product which contains a zclass "foo" and i have created
> > a role "foo_role" where every user belonges to this role
> > is able to add "foo" instances. This works fine.
> > But how do i define my permissions so, that all users which belong to
> > "foo_role" are able to delete "foo"-instances.
> >
> > I created a zope-permission "Delete Foo objects", then i mapped this permission
> > to "Delete objects" in the zclass "foo" like the mapping from "Add Foos" to "Create class instances".
> > But this doesnt work.
> "Delete objects" is a permission of the container (containing the objects
> to be deleted) and not the objects themselves.
>
> You can make your own object deletion method (script) that applies
> the permission checks you want (give it a "Manager" proxy role,
> such that it is able to actually delete the objects).
>
>
> Dieter
Thanks for your help, i will try to implement such a method.
Regards..