hasRole() has now full privilege
Philipp Bracher
On 09.06.2007, at 19:48, Amir Mistric wrote:
Hi
I have a tag that shows edit bar but only if the user has a role in
specified list.
Something like
<cms:adminOnly>
<nem:ifUserRoleMatches roles="superuser,webmaster">
<cms:editBar paragraph="np-logo" contentNodeName="logo"
editLabel="redefine" moveLabel="" deleteLabel="" />
</nem:ifUserRoleMatches>
</cms:adminOnly>
In the tag I get the user from MgnlContext:
User user = MgnlContext.getUser();
Collection userRoles = user.getRoles();
Collection userGroups = user.getGroups();
Checking the direct assigned user roles is fine...
But the problem I am facing is checking the user roles from the
groups the user belongs to...
I iterate over the specified roles (after creating a list out of
them) and do:
If (Security.getGroupManager().getGroup(grpName).hasRole(r)) {
//...user has the role...
}
This always throws AccessDenied exception because the "regular"
users I define do not have access to USERGROUPS repository....
How can I get around this?
I just want to check if user has a role via group membership (since
user.getRoles() only returns direct assigned roles and not roles
users may have indirectly because they belong to a group)...
Any idea would be greatly appreciated....
Amir
----------------------------------------------------------------
for list details see
http://www.magnolia.info/en/developer.html
----------------------------------------------------------------
----------------------------------------------------------------
for list details see
http://documentation.magnolia.info/docs/en/editor/stayupdated.html
----------------------------------------------------------------
