'RE: Problems with Permissions and Groups'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       jetspeed-user
Subject:    RE: Problems with Permissions and Groups
From:       "CSUMB" <casimiro_lovato-winston () csumb ! edu>
Date:       2003-04-29 6:34:03
[Download RAW message or body]

Helps alot, I just couldn't get past the lingo..
Thanks, 


-----Original Message-----
From: Jetspeed Users List [mailto:jetspeed-user@jakarta.apache.org]
Sent: Monday, April 28, 2003 11:24 PM
To: Jetspeed Users List
Subject: RE: Problems with Permissions and Groups
Importance: Low


I think you should use roles instead of groups. Groups are meant to
represent groups of portlets, not of users (someone correct me if I'm
wrong). A user can have multiple roles.

In the xreg, use the <allow-if role=xxx /> access. That works fine for me.


Hope that helps,

Pierre

> -----Original Message-----
> From: CSUMB [mailto:casimiro_lovato-winston@csumb.edu]
> Sent: mardi, 29. avril 2003 08:20
> To: Jetspeed Users List
> Subject: RE: Problems with Permissions and Groups
> 
> 
> I'm having some trouble getting information about how groups work in
> jetspeed as well. I would like to just be able to set some 
> constraint in a
> *.xreg file the defines a portlet to only be accessible to a 
> certain group.
> But upon reading the newgroup lists and documentation it does 
> not seem like
> it is the intended way for groups to be used.
> 
> Is there an allow-if group="myGroup" or userin="mygroup" type 
> of attribute?
> 
> Thanks,
> Casey
> 
> -----Original Message-----
> From: Jetspeed Users List [mailto:jetspeed-user@jakarta.apache.org]
> Sent: Friday, April 04, 2003 12:40 PM
> To: 'Jetspeed Users List'
> Subject: RE: Problems with Permissions and Groups
> Importance: Low
> 
> 
> Hi Beth,
> 
> First off check out 
> http://jakarta.apache.org/jetspeed/site/security.html
> which is an overview of how the current security 
> implementation works in
> jetspeed.
> 
> >> I'm using Jetspeed version 1.4b3 and am having trouble getting the
> >> Permissions and Group to work as
> >> I would expect. I wonder if the functionality is broke, or 
> am I just
> >going
> >> about it in the wrong way?
> >
> Jetspeed does not really observe the Permissions anymore.  It 
> is primarily
> role-base based.
> 
> >> 2) I would like certain users to only be able to add/remove certain
> >> portlets. I created a new
> >> GROUPX, and using the User Browser, I am only allowing 
> that user access
> >to
> >> GROUPX. Then I defined
> >> several new portlets in the local-portlets.xreg file with 
> the following
> >>          <category group="GROUPX">whatever</category>
> >> But this appears to have no affect on restricting the list 
> of portlets a
> >> user can see. It does seem
> >> to affect the categories though, because when I select filter by
> >category
> >> "whatever", I no portlets
> >> are displayed. If I change the above line to this, then 
> the filter by
> >> categery works again:
> >>          <category group="Jetspeed">whatever</category>
> >>
> >> Any suggestions? I've searched the mail archive to no avail.
> >
> I think the current CVS HEAD does do group restrictions.
> 
> *===================================*
> * Scott T Weaver                    *
> * Jakarta Jetspeed Portal Project   *
> * weaver@apache.org                 *
> *===================================*
> 
> 
> 
> >> -----Original Message-----
> >> From: Beth Kirschner [mailto:bkirschn@umich.edu]
> >> Sent: Friday, April 04, 2003 3:29 PM
> >> To: jetspeed-user@jakarta.apache.org
> >> Subject: Problems with Permissions and Groups
> >>
> >> I'm using Jetspeed version 1.4b3 and am having trouble getting the
> >> Permissions and Group to work as
> >> I would expect. I wonder if the functionality is broke, or 
> am I just
> >going
> >> about it in the wrong way?
> >>
> >> 1) I would like certain users to _not_ be able to customize their
> >portlets
> >> (e.g. remove the
> >> customize icon on portlets). I've tried unchecking the customize
> >> permission using the Security Role
> >> Browser, but it appeared to have no affect. I've tried 
> modifying the
> >> following property in
> >> JetspeedSecurity.propeties, but that had no affect either:
> >>
> >>
> >services.JetspeedSecurity.permission.default.loggedin=minimiz
> e,maximize,cl
> >> ose
> >>
> >> 2) I would like certain users to only be able to add/remove certain
> >> portlets. I created a new
> >> GROUPX, and using the User Browser, I am only allowing 
> that user access
> >to
> >> GROUPX. Then I defined
> >> several new portlets in the local-portlets.xreg file with 
> the following
> >>          <category group="GROUPX">whatever</category>
> >> But this appears to have no affect on restricting the list 
> of portlets a
> >> user can see. It does seem
> >> to affect the categories though, because when I select filter by
> >category
> >> "whatever", I no portlets
> >> are displayed. If I change the above line to this, then 
> the filter by
> >> categery works again:
> >>          <category group="Jetspeed">whatever</category>
> >>
> >> Any suggestions? I've searched the mail archive to no avail.
> >>
> >> Thanks!
> >> - Beth
> >>
> >>
> >> 
> ---------------------------------------------------------------------
> >> To unsubscribe, e-mail: 
> jetspeed-user-unsubscribe@jakarta.apache.org
> >> For additional commands, e-mail: 
> jetspeed-user-help@jakarta.apache.org
> >
> >
> 
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
> For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org
> 


---------------------------------------------------------------------
To unsubscribe, e-mail: jetspeed-user-unsubscribe@jakarta.apache.org
For additional commands, e-mail: jetspeed-user-help@jakarta.apache.org

[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic