[pLog-svn] Permissions in LT 1.2

Reto Hugi plog at hugi.to
Sun Nov 5 19:23:34 GMT 2006 

I played around with the new permission framework today. I think it's
flexibility is great and I already like it very much.

On 26.10.2006 16:12, Oscar Renalias wrote:
> For the admin side, I was thinking that being marked as an
> administrator is more than enough. Do we really need "quasi-admin"
> users who can change the site settings but cannot edit site users? Or
> users who can create new blog categories but do nothing else?

I'm sure this is getting asked immediately if it's not implemented :)
And I have several use cases where fine grained permissions on admin
side could be useful. For example think of an open community with lot's
of moderators (similar to phpBB). The admin don't want to let them mess
with URL settings, caching etc. but maybe has one guy that is validating
users (blocking users with bad behaviour etc), or one managing global
article categories, blog categories, setting up plugins and templates.

So, IMO "quasi-admin" users are something useful.

Some side-notes:
- while creating new users we don't have the permission stuff:
Permissions
user_permissions
[] Allow access to this blog
[] User is allowed to log in

this means, that we need to switch to the created user and activeate the
login. And I don't get why we have that checkbox as we have a user
status (active, disabled and unconfirmed) for that.
Oh, and what exactly is "Allow access to this blog" doing?

- I get errors when loggin in as a user who has only minimal rights in a
blog, but it's maybe to early to debug stuff like that:
Fatal error: UserPermission::getPermissionName() [<a
href='function.getPermissionName'>function.getPermissionName</a>]: The
script tried to execute a method or access a property of an incomplete
object. Please ensure that the class definition &quot;Permission&quot;
of the object you are trying to operate on was loaded _before_
unserialize() gets called or provide a __autoload() function to load the
class definition in
p:\server2go\htdocs\lt\class\dao\userpermission.class.php on line 92

reto

More information about the pLog-svn mailing list