CODEWITHSUNDEEP
plonezope
Imran Azad
Imran Azad

Reputation: 1404

Model complex permissions based on groups

I am trying to model the following permissions in Plone and would like to know the best approach I should take:

Group 1 - Senior members Group 2 - members

Group 3 - Senior members Group 2 - members

  1. All the members in the groups shouldn't be able to view any content item associated with them.

  2. Senior members should be able to view and amend content items within their sub groups but should not be able to view each others content items - these content items all have a user_id field to indicate who the content belongs.

  3. Members in sub groups should not be able to view content associated with senior members nor each others content items.

Thank You

Upvotes: 0

Views: 126

Answers (2)

Auspex
Auspex

Reputation: 2254

Try using collective.subscribable sections. I haven't fully tested it yet, but it seems to be doing the job for me. I went the borg.localrole route, and it was a major pain, and I was never happy with my solution.

Upvotes: 0

Laurence Rowe
Laurence Rowe

Reputation: 2999

I think you're going to get the same answers here as you got with your mailing list post: http://plone.293351.n2.nabble.com/Implementing-bespoke-access-control-levels-in-Plone-td6986879.html

You'll need to write your own local role adapter using http://pypi.python.org/pypi/borg.localrole. Perhaps take a look at http://pypi.python.org/pypi/borg.project as well and the article introducing it: http://www.martinaspeli.net/articles/developing-with-plone-3-borg.localrole-and

Upvotes: 1

Related Questions