Forums / Setup & design / disable admin site for anyone but admin user

disable admin site for anyone but admin user

Author Message

Huib Kleinhout

Friday 30 May 2003 1:37:32 pm

Does anyone know if it's possible to disallow certain users to use certain designs?
So for example a user that has logged in on (a non-virtual host) to /index.php/mydesign/ can't browse in /index.php/admin/
?

Thanx

Jan Borsodi

Friday 30 May 2003 2:03:13 pm

You control that by using roles and policies, simply make sure that roles for anonymous (or non-admin) users do not have user/login for the admin siteaccess. You should also make sure that the administrator has user/login to all (Any) siteaccesses.
Anon:
user/login mysiteaccess

Admin:
user/login *

If you see a user/login * policy for a non-admin role simple remove it and create a new one with the desired siteaccess.

--
Amos

Documentation: http://ez.no/ez_publish/documentation
FAQ: http://ez.no/ez_publish/documentation/faq

Selmah Maxim

Saturday 31 May 2003 12:21:27 am

Can you explain this more ... plz ?

Paul Borgermans

Saturday 31 May 2003 12:38:07 am

In the admin interface you create this role with selecting the user module -> "allow limited" -> select login -> "allow limited" and then select the siteaccesses except the admin site

This role is then assigned to all users except admin

Paul

eZ Publish, eZ Find, Solr expert consulting and training
http://twitter.com/paulborgermans

Brendan Pike

Saturday 31 May 2003 12:46:14 am

I just did this on a site strangely when an Anonymous user visits the site, i.e. http://216.xx.xxx.xx:2022 they see the standard ezp design with a Access Deinied message.

But if they apply the design path like this, http://216.xx.xxx.xx:2022/design then it works fine.

If users have full access to all designs including admin then it works fine?
Can anyone provide any insight?

www.dbinformatics.com.au

We are always interested in hearing from experienced eZ PHP programmers and eZ template designers interested in contract work.

Huib Kleinhout

Saturday 31 May 2003 12:57:26 am

Hmmm, I'm having the same problem as Brendan Pike.
"user/login mydesign" does not work (access denied) if no design is specified by the client, even though DefaultAccess and DefaultPage are set.
Any thoughts?
Thx

Selmah Maxim

Saturday 31 May 2003 1:07:04 am

i have tried befor, didn`t work, when user type site/admin he will access the admin sitemap !

the best i think to do is renaming the admin sitedeign and admin folder, let`s say to kings, then when user type site/admin will get nothing !

Also u must protect the admin folder with ..htaccess, for mose secure site !

Pual ,
whet the meaning login roles per site ?
if it`s for keep the users away from where the admin want, then is not working .. coz any way users need to login to access !

Selmah Maxim

Saturday 31 May 2003 1:12:24 am

just found bug ...

roles update ...

when u make update for roles, then logout , login u will find the old roles !
just found while am trying to update the users/login roles !

Brendan Pike

Saturday 31 May 2003 1:21:10 am

I'm not experiencing this bug, it seems to hold my settings correctly

www.dbinformatics.com.au

We are always interested in hearing from experienced eZ PHP programmers and eZ template designers interested in contract work.

Selmah Maxim

Saturday 31 May 2003 1:21:49 am

now i had gave users: login/user, login/demo, work nice, but with problem !
it`s not taking the SiteDesign from ini file, i must write index.php/demo,/user !

any1 met this probem ?!

Huib Kleinhout

Sunday 01 June 2003 11:31:01 pm

Hi, I don't expirience that bug about 'roles update'. Maybe you forgot to hit the 'store' button?

But the problem with ez not taking the default design (and page?) from the ini file also stops me from restricting user/login access. This seems like a real bug to me.

Selmah Maxim

Monday 02 June 2003 2:18:00 am

Hi Huib ..

It was cach problem :)

Now amd waiting for some fixs, i hope soon will be on, the most important to is : 1st, the bug with phpcronjobs.php, 2sd, this access problem, and some modification for Ezimage (you cann`t make the uploaded image less than 1 MB, not verify is the uploaded file is image or not) .. i think thats all the major bugs !