ducasse wrote:
Hi lukas
I restarted to read SmallWiki code because I lost the changes of my
previous image.
Anyway, if I understand correctly there are permissions and users.
Permission are grants to perform action.
A role contains a list of permissions.
A user play certain roles.
correct.
Before performing an action, sw checks whether the user has the right
permissions obtained
by playing a certain role.
Now the structure itself is not involved, this means that if I
want to have a special page that only a certain person can edit but
everybody else cannot I have to create a special role for that. Am I
correct? Or is it possible to grant permission at the instance level
like a page?
well, the structure is also involved:
you can also append a role to a structure: e.g. if a user with role a
wants to perform an action on structure 1, sw will look for role a on
the current structure 1 and apply these permissions. if structure 1
doesn't have role a, sw will look for role a in the parents structure
and so on...
For example how do I say that a folder x can only be edited by admin
or User X, or a person playing the role editFolderX?
- append role editFolderX to folder x with permission to edit.
- append all other roles to folder x and remove permission to edit.
I'll try to integrate my admintool on monday. if you want to have a look
at it (might still have some bugs..):
http://badefix.unibe.ch:8080/?action=AdminAction
...hope this will help.
...the action "admin" doesn't show up yet, so you always have to type
......?action=AdminAction on a certain folder.
cheers,
david.
ps. I'll work on it on friday, so the server might be down.