[Setup] Assigning role to group

ysusanto yoel.ade at gmail.com
Fri Feb 15 03:34:48 UTC 2008


For no reason, It's starting to work. :confused:
Is there a way to debug PloneLDAP? 
I need to trace the communication between plone and ldap.

Thanks


ysusanto wrote:
> 
> Hi Steve,
> 
> Thank you for your reply.
> I've manage to create group and assign members to it.
> 
> However, I am still facing another problem. I have a page called
> "admin-apps" on root folder.
> I have groups of admin; for example ITAdmin, HRAdmin. I have put members
> to this group.
> And i created a role called "AppAdmin" which has View access on
> "admin-apps" page.
> 
> I have configured the following
> 
> ysusanto --> member of ITAdmin group (set in local_group)
> ITAdmin group --> granted "AppAdmin" role (set in portal_role_manager
> page)
> 
> But I am still getting the following message when i logged in as ysusanto
> and trying to view "admin-apps" page
> ======================================================================
> Insufficient Privileges
> You do not have sufficient privileges to view this page. If you believe
> you are receiving this message in error, contact the site administration. 
> ======================================================================
> 
> I tried adding ITAdmin in the sharing tab. It doesn't work either.
> 
> I am only able to view the page if I grant "AppAdmin" role directly to
> "ysusanto"
> 
> Do you have any idea where I might be doing wrong?
> 
> Thanks.
> 
> Joel
> 
> 
> 
> Steve Adamo wrote:
>> 
>> Hi ysusanto... since you are now able to access details from AD, you need
>> to setup groups in Plone, and assign AD accounts to that new group… then,
>> you set the permissions on a Plone folder, and make the contents only
>> accessible to members of that new Plone group… 
>> 
>> Quick steps:
>> CREATING NEW GROUP | ASSIGNING MEMBERS
>> •	Open up the Zope Management Interface
>> •	In the root of your Plone site, click the acl_users folder
>> •	Click the source_groups link
>> •	Click the Add a group link (next to current groups)
>> •	Give the new group an ID, Title and Description
>> o	ID: ExecGroup
>> o	Title: Executive Group
>> o	Description: This group contains members of the executive staff
>> •	Click on the ExecGroup link (now listed under Current Groups)
>> •	Click the Assign link (next to the group name at the top)
>> •	Under Principle ID, type the name of the person you want to add to the
>> group, and click Search
>> •	The name should show up in the Available list
>> •	Click the name, and then click the arrow pointing to the right to drop
>> the name in the Active group
>> •	Repeat this process until all the executive members are in the new
>> ExecGroup
>> 
>> CREATING NEW FOLDER | ASSIGING GROUP TO FOLDER
>> •	Login to your Plone site through the browser (as an admin)
>> •	Create a new folder off the root of the site
>> •	Give the folder a title and description
>> •	Once the folder is created, leave the State as Private, but click on
>> the Sharing (light green tab)
>> •	Under Search for user or group, type the name of the ExecGroup name and
>> Search
>> •	The new group should show up under Logged-in users
>> •	Check the Can view, Can review, etc. checkboxes in the ExecGroup row,
>> and click Save (leave the inherit permissions box checked)
>> 
>> Now when your employees that are in the ExecGroup login to the plone
>> site, they will be the only ones who can see/access that folder.  Post
>> all those sensitive materials etc. in that new folder, and you should be
>> set!
>> 
>> hope that helps!
>> steve
>> 
>> 
>> 
>> 
>> ysusanto wrote:
>>> 
>>> Hi all,
>>> 
>>> I am using Plone 3.0.5 and PloneLDAP.
>>> 
>>> I've managed to create local group and put members into it. I can search
>>> my ldap users and assign them to the group.
>>> 
>>> What i can't do is assigning my custom roles to that group. for example.
>>> 
>>> I created a group called HRD, I put HR staff to that group. I have a
>>> role named HRDRole.
>>> I would like to give that role to HRD group. 
>>> At the /acl_users/portal_role_manager, i can only assign user to roles.
>>> I can't assign group to that role.
>>> 
>>> I hope someone can help me with this. desperately need this to work.
>>> 
>>> Thanks before for any responses.
>>> 
>>> Cheers,
>>> Joel
>>> 
>>> 
>>> 
>>> 
>> 
>> 
> 
> 

-- 
View this message in context: http://www.nabble.com/Assigning-role-to-group-tp15475861s15482p15494262.html
Sent from the Installation, Setup, Upgrades mailing list archive at Nabble.com.




More information about the Setup mailing list