[pLog-svn] Permissions in LT 1.2

Oscar Renalias oscar at renalias.net
Sun Nov 5 20:01:29 GMT 2006 

On 5 Nov 2006, at 21:23, Reto Hugi wrote:

> I played around with the new permission framework today. I think it's
> flexibility is great and I already like it very much.

Thanks, I'm glad somebody is giving it a try and already finding it  
useful :-)

> On 26.10.2006 16:12, Oscar Renalias wrote:
>> For the admin side, I was thinking that being marked as an
>> administrator is more than enough. Do we really need "quasi-admin"
>> users who can change the site settings but cannot edit site users? Or
>> users who can create new blog categories but do nothing else?
>
> I'm sure this is getting asked immediately if it's not implemented :)
> And I have several use cases where fine grained permissions on admin
> side could be useful. For example think of an open community with  
> lot's
> of moderators (similar to phpBB). The admin don't want to let them  
> mess
> with URL settings, caching etc. but maybe has one guy that is  
> validating
> users (blocking users with bad behaviour etc), or one managing global
> article categories, blog categories, setting up plugins and templates.
>
> So, IMO "quasi-admin" users are something useful.

Very well, I will take a look at it. I was just thinking what I could  
work on next, I'll get working on this as soon as I can.

> Some side-notes:
> - while creating new users we don't have the permission stuff:
> Permissions
> user_permissions
> [] Allow access to this blog
> [] User is allowed to log in

I will take a look.

> this means, that we need to switch to the created user and  
> activeate the
> login. And I don't get why we have that checkbox as we have a user
> status (active, disabled and unconfirmed) for that.
> Oh, and what exactly is "Allow access to this blog" doing?

If you want to temporarily disallow a user from logging into let's  
say your blog, then instead of removing all permissions and adding  
them again, you can always remove the "allow access to this blog"  
permission while keeping all others. This permission effectively  
allows/disallows a user to log into a blog no matter what other  
permissions he might have.

> - I get errors when loggin in as a user who has only minimal rights  
> in a
> blog, but it's maybe to early to debug stuff like that:
> Fatal error: UserPermission::getPermissionName() [<a
> href='function.getPermissionName'>function.getPermissionName</a>]: The
> script tried to execute a method or access a property of an incomplete
> object. Please ensure that the class definition &quot;Permission&quot;
> of the object you are trying to operate on was loaded _before_
> unserialize() gets called or provide a __autoload() function to  
> load the
> class definition in
> p:\server2go\htdocs\lt\class\dao\userpermission.class.php on line 92

Can you post the exact steps needed to reproduce this? It might be  
just an issue with a class not being included at the right moment.

More information about the pLog-svn mailing list