user roles problem

Author Message

Marko Žmak

Thursday 21 October 2004 4:33:55 pm

I want to enable some users of my site to change their user details (name, email...) from the admin interface. I tried giving them permissions for "user->selfedit" but then I get another problem:

- every user can add to himself another location - even the ADMINISTRATORS GROUP and then gain the administrator privileges!!!

How do I solve that? I want my users to be able to change their details but wihtout being able to add them to Administrators group.

--
Nothing is impossible. Not if you can imagine it!

Hubert Farnsworth

Silke Fox

Monday 25 October 2004 12:55:46 am

What about using an override template for editing users from the frontend?
You could then remove the inclusion of "edit_placement.tpl" etc. from it, so that users can only edit their details but not the group.

But I guess this isn't exactly what you want to do?

Marko Žmak

Thursday 28 October 2004 3:08:08 pm

Yep, you're right. That's not what I reaaly want. I would prefer a solloution without messing with templates of the admin site. Is there any other way?

--
Nothing is impossible. Not if you can imagine it!

Hubert Farnsworth

Mark Marsiglio

Tuesday 02 November 2004 6:26:54 am

Can you assign your limited role policies to the user group that these users are in? For instance, you could delete the permissions that give them access to the admin group, and create a new policy which allows more limited access. For instance, they could only read from the users/editors group instead of the entire users subtree. Optionally, you could make this user group a different section, and then limit that group only to see users in the new section.

There are probably several ways to do this using role policies and/or sections.

http://www.thinkcreative.com
Turning Ideas Into Strategic Solutions

Powered by eZ Publish™ CMS Open Source Web Content Management. Copyright © 1999-2014 eZ Systems AS (except where otherwise noted). All rights reserved.