"Forbid creating entries?" Stops Group Permissions
Posted: Sat Oct 01, 2005 4:07 am
Hi all,
I've been trying to create a user that only has permissions to set their own personal settings, but nothing else. So I created a user group named "Guest" with only the "personalConfiguration" permission set. However, I find that I must also set the "Forbid creating entries?" of each user to "no", otherwise this permission does not take effect.
Here's the code that I believe is the problem in include/functions_config.inc.php for serendipity_checkPermission():
The result is that when a user logs in, they can do absolutely nothing. The problem with setting "Forbid creating entries?" to "yes" is that then the "New Entry" and "Add Media" options appear for the Login sidebar plugin. Of course, I could edit the login plugin to fix this, but I wonder if the extra condition in the above code is really necessary? If we should have an overriding permission option, maybe it should be some other option?
Thanks for any feedback and for an excellent product!
Jonathan
I've been trying to create a user that only has permissions to set their own personal settings, but nothing else. So I created a user group named "Guest" with only the "personalConfiguration" permission set. However, I find that I must also set the "Forbid creating entries?" of each user to "no", otherwise this permission does not take effect.
Here's the code that I believe is the problem in include/functions_config.inc.php for serendipity_checkPermission():
Code: Select all
if ($authorid == $serendipity['authorid'] && $serendipity['no_create']) {
// This no_create user privilege overrides other permissions.
return false;
}
Thanks for any feedback and for an excellent product!
Jonathan