Hello Matthieu,
Haver you added a security entry in security.xreg to whatever portlets
defined in group/apache/html/default.psml such that
<security-entry name="apache-group-only">
<access action="*">
<allow-if group="apache"/>
</access>
</security-entry>
Now rewrite the portlets referenced in group/apache/default.psml like below
<portlet-entry name="xyz" hidden="false" type="ref" parent="HTML"
application="false">
<security-ref parent="apache-group-only"/>
</portlet-entry>
The psml are instances of portlets registered thru the registry, unless you add
the <security-ref> these portlets are accessible by anyone. There is also a way
to add <security-ref> to psml instead of xreg.
Vijay
--- Matthieu DELAHAIS <[EMAIL PROTECTED]> wrote:
> Hi,
>
> I created a role (role1) and its default psml file. In
> this psml file, I make a call to a psml file defined
> into group/apache/html/default.psml. So, when I
> connect a user which has the role1, I have access to
> the portlet define into the psml of
> group/apache/html/default.psml.
> The problem is that my user has the role role1, but he
> is not define into the group apache (table
> TURBINE_USER_GROUP_ROLE). So, in my mind, I should not
> have access to this portlet.
> Where is my problem? I forgot to configure a
> parameter? is there a problem with the group?
>
> Matthieu
>
> ___________________________________________________________
> Do You Yahoo!? -- Une adresse @yahoo.fr gratuite et en fran�ais !
> Yahoo! Mail : http://fr.mail.yahoo.com
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
