Jean Hollis Weber wrote:
Gary Schnabl wrote:
Can anybody fill me/us in on what exactly each status designation--
member, author, manager, etc.--may or may not be able to do
or access on the Web site?
Some words to the user roles and folder rights...
For historical reasons (security issues in the past) we have a mix
between (zope) user roles (set to acl_users):
managers
authors
members
(guest/anonymous)
and (plone) user rights:
manager
owner
reviewer
member
(guest/anonymous)
Zope is responsible for the general stuff (site look an feel, what stuff
us shown or not and so on) cause its the base which is uses by a plone site.
Plone is responsible for the content in general (not really its a mix
but to keep it simple believe it :-) )
That means a User with the author role (Zope) will see all stuff like
review lists and so on but without the (Plone) rights: reviewer, owner
or manager he will never be able to modify content!
To make the chaos perfect You could give Zope groups Plone rights:
If You set the permissions for a plone folder like
http://oooauthors.org/en/images/ to a zope group like authors, managers
or members every member of this group gets this rights! This makes it a
little bet simpler to give some the right to modify conten, but could be
a really ugly security issue. At the moment every member (also self
registed members never seen on the list has the right to modify content
on the most en folders, cause the permission "Author" is set to the zope
group "members".
That is the reason that there is no difference between members an
authors on en folders ...
On every subsite like the default is
members can view (only view, not modify!!!) and download all documents
in the folders on OOoAuthors.org (default, if someone set the folder
rights to the group authors an remove users not)
On de we are a little bit more strict at the moment, cause there a no
Plone rights for Zope groups at the moment only for Zope users.
(That's why I gave peggys the reviewer)
Regards
Marko
Member: I'm not sure what if any extra things a Member can do that a
non-Member cannot. Both can download files with status of Published
and view some folders but not others (not sure which).
Author: Can view all folders and files, download files with any
status, upload files, and do other file and folder maintenance tasks
(cut, copy, paste, delete, changes state [status]).
Manager: In addition to Author privileges, can assign Author or
Manager status to any Member and do various site maintenance activities.
--Jean
