I use Ploneboard inside my plone website. I created a group Forum managers for users that will manage my forum. I think there must be a custom role added to this group and the custom role will have custom forum permissions (Adding Forum, Adding Posts, etc.) added.
How can I give all permissions related to forum to this group members without giving them the global site manager role?
In general terms: if you go to the ZMI (.../manage), and there to the security tab, you will have the possibility of adding a user defined role, at the very bottom.
Once you've done that, you can
give permissions to that role, it will show up as another column in the security tab. (This is vague, since I don't have a PloneBoard here to tell you the exact rights you want to give to them, but it's customary that they'd start with "Ploneboard", this looks like the current list.)
give that role to users or groups of your site in the ordinary overview panel (.../##usergroup-groupprefs): it appears as another role next to Contributor, Editor et al.
(Disclaimer: This approach might not reflect Plone current best practice. It also doesn't cover how to do it in code.)
Related
I have have a client that wants to create a Wordpress site with the following features.
Private Messaging
User profile
Friend Groups
The ability for a user to create one or many "journals" which are essentially a blog, which only their friends can see.
The last item is the one that I am puzzling over. It seems that it might be best to create a multisite where users can create their own blogs. But I'm not sure how I would manage who can see the blogs, or how I would display the blogs on the user's profile page.
Does anyone know any projects similar to this or have any ideas about where to start with a project like this?
Update for anyone who sees this.
Buddypress solves first three problems more or less out of the box.
I decided to customize the groups feature a bit to fit the bill for a user created journal. The user can create a group (groups are renamed 'journals' by means of the translation file for BP) and he is the only one allowed to post to it. I have updated some of the group meta fields so the user can add a bit more information about his journal, as well.
Using WordPress is a great way to learn and make progress on web development. Although, I want to make admins for each and one of my classmates to only and only create and publish posts on the web. For example, BuzzFeed has admins that create content and it tells the author name, date and time, comments and responses next to it. That's what I am aiming for. Not all of my classmates use wordpress or have ever used it so I want to find a way to create admins for them simply without creating security holes for the website itself and risking getting hacks or login attempts.
what is the best way to approach a situation like this?
anyone?
Thanks :)
If you want your classmates to be able to add posts you can add them as "Authors." Wordpress has a build in permission system that allows authors to only add, edit and delete posts.
If you want to have more control over the capabilities you can use a plugin like User Role Editor. This will allow you to create a new role and set specific capabilities for the created user role.
This is my first experience building a site with Drupal and am still learning about all I can do with it.
I am trying to figure out a way to configure sort of a second level of user roles consisting of roles defined with permissions. The users of the site will be group members with various titles, for example: Manager, secretary, web admin, etc. Each of these titles will have responsibilities within the site. The users tied to these titles change though and I would like re-configuring this in the site to be as easy as possible (will be for someone unfamiliar with Drupal).
I am thinking configure permissions into roles such as content editor, file uploader, etc based around the responsibilities each title will have. Then I would need an additional role editing page (probably custom) that would show a similar table to permissions/roles but would be with roles/titles where the site admin could easily take a person with say secretary title and easily provide them the ability to edit dates, or upload files, etc.
This would make it easy in that the site admin would only be presented with the titles and the abilities defined for site usage, and not have to comb through the entire list of permissions.
The second issue with this would be then how do I assign titles to users. Ideally it would be the same as assigning roles within a users account page.
Any suggestions/ideas?? Thanks in advance!
The more Drupal-ish way to handle this is to just make your individual roles ("content editor", "file uploader") into the roles and assign multiple roles per user. So instead of there for example being a "Manager" title which gets the "content editor" and "file uploader" roles, you would just assign those two roles to users directly and avoid the notion of the "manager" title altogether.
The other obvious option is to just make your titles the roles, meaning that the "manager" role gets all the permissions that would otherwise be given to "content editor" and "file uploader".
Both of those methods avoid the notion of two levels of roles and since that's not really how Drupal is supposed to work, it will save you lots of pain to go this route.
I'd like to add a new role to my Wordpress site. It needs more permissions than Author, but fewer than Admin. Searching the codex and Stack, I have come across a consistent method of adding this code to functions.php, but a repeated error resulted in me trying the User Role Editor plug-in.
Users under this new role need to be able to edit, see, delete, and managed all posts, categories and tags. They also must be able to manage all comments, both approved and pending. Additionally, they should have access to Discussion settings. This last bit seems to be impossible, though. I can give them the ability to manage options, but not specific options. Is there a way to grant such a specific capability?
Thanks.
I'm currently trying to realize a second (lower) admin layer in drupal. I have made an extra section via the module of the same name for those users so they can have their own theme etc. I want to give these second or lower admins a menu in their section of the page where they can access certain admin functions like administer other users, and certain types of content etc. The biggest problem I encounter is security inconsistency, e.g. the second admin could make himself a full admin because I use drupals own core admin functions and where not able to figure out how to permanently block certain features but permit others. In this case I want to make the second admin able to create and change roles of users in lower hierarchy than he himself, but not able to change to or create real admins. This is only a part of the problem however, smaller issue is that I'm not able to keep my theme set for the second admin section without having to duplicate the existing admin views (like those for users and content) and set the duplicates to a path under my section. Any suggestions?
This would probably be best accomplished through creating a role (admin/user/roles) then defining that roles permissions (admin/user/permissions). Then just create a user(admin/user/user/create) belonging to that role, define a menu (admin/build/menu) with the links you want them to have access, then move the menu block (admin/build/block) to the region you want and then configure it for only that specific role.
There isn't exact an easy way to go about this, just a lot of permissions trial and error. I suggest you log in as user/1 in one browser and log in as the user you created with another browser and test the permissions config you've setup.