[Zope] Re: Re. Zope Users and Roles

Juan Pablo Romero jpablo@perl.ajusco.upn.mx
19 Apr 2002 18:16:34 -0500 

Ups, I think I didn't explain myself clearly.

What I want is to restrict access to some specific file
('insert_field'). So, I created a user at some level above the location
of the file, and at root level created a role ('db_user'). Now I don't
want to restrict access to *all* files below the role level; that's way
I shouldn't modify the permissions of that folder. According to the zope
book, I only need to modify permissions of the object I do want to
restrict access. 

I did as you suggested, that is, changed 'view' field of 'insert_field'
(selected entry from 'db_user' role and deselected from all other
columns).

At this point I understand zope should allow access to 'insert_field'
only to users with the 'db_user' role. But it doesn't.

Oddly, If I assing 'manager' role to the user (instead of 'db_user'),
and change the 'view' line of 'insert_field' (check 'manager' entry,
uncheck all other columns), then zope does ask for password, and accept
the user (exactly what I want, but for 'db_user' role).

It seems that user created roles don't get the same treatment than
'system' roles.

Thanks for your patience.


  Juan Pablo


On Fri, 2002-04-19 at 00:34, Felipe E. Barousse B. wrote:
> Guess you misunderstood. 
> 
> You CAN create the role, in this case "db_user" at the level you want to
> have control of the user's access (as in "test" in your example) OR, in
> any level above that object "test", such as root level. You did it at
> root level , that is OK. 
> 
> Then, AT THE LEVEL WHERE YOU  CREATED THE ROLE, "test" or "root" level
> as propper, get into the security tab and check the following permissios
> for the role "db_user": 
> 
> Access contents informations 
> Use Database Methods 
> View 
> 
> Optionally uncheck the same permissions for the Anonymous role -at that
> level in case don't want/need public access to that object. 
> 
> Well, guess this clarifies the issue.
> 
> Felipe Barousse
> Bufete Consultor de Mexico - Piensa Technologies.
> www.piensa.com
> 
> 
> 
> >Message: 19 
> >Subject: Re: [Zope] Re: Zope Users and Roles 
> >From: Juan Pablo Romero <jpablo@perl.ajusco.upn.mx> 
> >To: zope@zope.org
> >Date: 18 Apr 2002 14:44:31 -0500 
> > 
> >Hi 
> > 
> >As you said, I added the role 'db_user' at root level. 
> > 
> >Now, where do I get the secury tab *for the db_user role*? 
> > 
> >I mean, I have tabs for all zope objects, such as folders, files, etc.,
> >but not for a role. 
> > 
> > 
> >  Juan Pablo