Olivier Grisel wrote: > To configure the use of the Admin role: some CPS components (directories, > fields, wf transitions, guards, ...) checks directly for roles instead of > individual permissions. > > You can grep the default xml profile of CPSDefault for key words such as > ACL, Manager, guard to get a rough idea of which component checks what > role.
I found the right places: I had e.g to add Admin to the ACL: write role of portal_schemas/members/f__password. That works fine. But I have to prevent to Admin from changing the password of a Manager. I guess that I could do this by adding a condition to "ACL: write permission" or "ACL: write expression". Is that true? Actually I have no idea how such a condition would look like. How can I say "Only if access member does not have role 'Manager'"? I have the feeling that I am making big steps in bringing the portal to my needs. It would be great if you could guide me further. Thanks a lot. /m _______________________________________________ cps-users mailing list [email protected] http://lists.nuxeo.com/mailman/listinfo/cps-users
