[Zope] uses, roles and groups
Stuart 'Zen' Bishop
zen@cs.rmit.edu.au
Fri, 17 Dec 1999 13:06:05 +1100 (EST)
On Wed, 15 Dec 1999, Oliver Frommel wrote:
> while trying to implement a Zope product encountered the following problem:
> I think I understand the concepts of both users and roles, roles being a set
> of permissions. In this connection groups (as in Unix) are implemented just
> by putting the Zope user folders in the right place. When I want to have
> a more centralized user administration I'd need something like a group
> attribute for it, so I could give certain roles (in principle I'd just need
> an editor role) dependent on the user belonging to a certain group.
> AFAIK none of the products USerDB, GUF oder etcUserFolder provides hooks for
> this.
A role *is* a group. You grant arbitrary priviledges to a role, and all
users with that role (members of that group) will also get those privs.
--
___
// Zen (alias Stuart Bishop) Work: zen@cs.rmit.edu.au
// E N Senior Systems Alchemist Play: zen@shangri-la.dropbear.id.au
//__ Computer Science, RMIT WWW: http://www.cs.rmit.edu.au/~zen