[Product-Developers] Implementing bespoke access control levels in Plone

Imran Azad imran.azad at bradfordhospitals.nhs.uk
Fri Nov 11 21:59:57 UTC 2011


I would like some advice on customising Plone to implement some bespoke
access control levels. 

I am using Plone as a document management system for HR records and I need
to build some bespoke access control levels. The HR record of each employee
will be a folder with sub-folders inside it. The only people who will have
access to the system to view, add and amend the HR records will be the HR
administration staff and some senior HR staff members.

This is where the bespoke requirements come in. Access control levels need
to be established for the HR staff folders. There are three organisational
units in HR: HR Management, HR/Workforce Performance and Policy/Staff
Engagement/Dignity at work. So for example the HR/Workforce Performance unit
is headed by a senior member of staff under which there are two more senior
staff each with their own staff. The access control levels need to ensure
that the person responsible for the unit can see and amend all the HR
records within their unit except their own HR record and those HR records of
the other two units. The two senior staff should be able to see and amend
all the HR records of their staff except their own HR record and that of the
other. The staff under the two senior staff should be able to view, add and
amend all HR records within the system but not their own, that of the other
or the HR records of any HR staff.

I hope the above makes sense.

Thank You.

--
View this message in context: http://plone.293351.n2.nabble.com/Implementing-bespoke-access-control-levels-in-Plone-tp6986879p6986879.html
Sent from the Product Developers mailing list archive at Nabble.com.


More information about the Product-Developers mailing list