Private Pages

Advanced page rights

alphaphoenix	#1 21.10.2011 19:11
Members	When a member submits a page for validation and an adminitrator validates it all members can view the page using the list.php view. I would like to prevent members from viewing pages that other members own. Its seems that there is now admin setting for this. Then that would allow the latests page plugin to show the member only the latests pages that they own and not allow them to view others. Added 1 minute later: Basicly members should only be able to view page that they own.

alphaphoenix

#1 21.10.2011 19:11

When a member submits a page for validation and an adminitrator validates it all members can view the page using the list.php view. I would like to prevent members from viewing pages that other members own. Its seems that there is now admin setting for this. Then that would allow the latests page plugin to show the member only the latests pages that they own and not allow them to view others.

Added 1 minute later:

Basicly members should only be able to view page that they own.

Dyllon	#2 21.10.2011 20:44
Contributors Поблагодарили: 16 раз	what version of cotonti are you running? We are what we repeatedly do. Excellence then, is not an act, but a habit.

GHengeveld	#3 21.10.2011 23:04
Team Поблагодарили: 52 раза	So long as the page isn't validated, it shouldn't be visible at all (or at least not readable, maybe listable). I'm working on a sharing plugin that lets users allow/disallow read/write/admin access to other users for their own pages (or whatever else the user owns, such as pfs folders).

alphaphoenix	#4 22.10.2011 17:52
Members	I am using a fresh install of the stable version .6.2.0 I need the page to be available after validation but only visable to owner/admin. Added 8 minutes later: Maybe there is a tag similier to : <!--BEGIN: PAGE_ADMIN --> that allows me to protect content from being viewed. This only lets the admin vew though I need a page to be able to be viewed by only the owner and admin. Added 49 minutes later: after further research I have found that while in validation state, a page can only be viewed by owner and admin :). For now I will have to use the validation state as the main operating state of the page for the website until I can find another remedy. Added 2 minutes later: #31071 GHengeveld: So long as the page isn't validated, it shouldn't be visible at all (or at least not readable, maybe listable). I'm working on a sharing plugin that lets users allow/disallow read/write/admin access to other users for their own pages (or whatever else the user owns, such as pfs folders). Will the plugin have default access rules for every page/group so that the process is streamlined during validation? Or even when user is first submiting page will the plugin be set to a certin combonation of access rights so that the user does not have to make changes to it thereself?
Отредактировано: alphaphoenix (22.10.2011 18:53, 12 лет назад)

alphaphoenix

#4 22.10.2011 17:52

Members

I am using a fresh install of the stable version .6.2.0 I need the page to be available after validation but only visable to owner/admin.

Added 8 minutes later:

Maybe there is a tag similier to :  that allows me to protect content from being viewed. This only lets the admin vew though I need a page to be able to be viewed by only the owner and admin.

Added 49 minutes later:

after further research I have found that while in validation state, a page can only be viewed by owner and admin :). For now I will have to use the validation state as the main operating state of the page for the website until I can find another remedy.

Added 2 minutes later:

#31071 GHengeveld:
So long as the page isn't validated, it shouldn't be visible at all (or at least not readable, maybe listable).

I'm working on a sharing plugin that lets users allow/disallow read/write/admin access to other users for their own pages (or whatever else the user owns, such as pfs folders).

Will the plugin have default access rules for every page/group so that the process is streamlined during validation? Or even when user is first submiting page will the plugin be set to a certin combonation of access rights so that the user does not have to make changes to it thereself?

Отредактировано: alphaphoenix (22.10.2011 18:53, 12 лет назад)

pieter	#5 22.10.2011 21:32
Team Поблагодарили: 9 раз	Make a new cat. Make a specific tpl for it. page.CAT.tpl Use a if structure to display content so only admin and owner can view it. In else structure put something like "This page is not ment for you." <!-- IF {userid} == {PHP.pag.page_ownerid} or user = admin --> (don't know the real expression) ... can we help you ...

GHengeveld	#6 22.10.2011 23:50
Team Поблагодарили: 52 раза	#31091 alphaphoenix: Will the plugin have default access rules for every page/group so that the process is streamlined during validation? Or even when user is first submiting page will the plugin be set to a certin combonation of access rights so that the user does not have to make changes to it thereself? The plugin will extend regular cot_auth behavior, so whatever you configure in the admin panel for page rights (for that category and usergroup) will be the default. Basically you should see it as a way to make exceptions on the rules set in the rights in the admin panel. There is also a possibility to configure access rights to a page for all users at once (which can then be overruled for individual users). It isn't meant to be used on a large scale, since checking access credentials for individual users will slow down the whole system. It's meant to work somewhat like google docs filesharing in which you can invite another user to cooperate on a document together. Perhaps an option in userprofile to allow users to configure the default setting would be a good addition.

GHengeveld

#6 22.10.2011 23:50

Team
Поблагодарили: 52 раза

#31091 alphaphoenix:
Will the plugin have default access rules for every page/group so that the process is streamlined during validation? Or even when user is first submiting page will the plugin be set to a certin combonation of access rights so that the user does not have to make changes to it thereself?

The plugin will extend regular cot_auth behavior, so whatever you configure in the admin panel for page rights (for that category and usergroup) will be the default. Basically you should see it as a way to make exceptions on the rules set in the rights in the admin panel. There is also a possibility to configure access rights to a page for all users at once (which can then be overruled for individual users). It isn't meant to be used on a large scale, since checking access credentials for individual users will slow down the whole system. It's meant to work somewhat like google docs filesharing in which you can invite another user to cooperate on a document together.

Perhaps an option in userprofile to allow users to configure the default setting would be a good addition.