I would like some advice on customising Plone to implement some bespoke access control levels.
I am using Plone as a document management system for HR records and I need to build some bespoke access control levels. The HR record of each employee will be a folder with sub-folders inside it. The only people who will have access to the system to view, add and amend the HR records will be the HR administration staff and some senior HR staff members. This is where the bespoke requirements come in. Access control levels need to be established for the HR staff folders. There are three organisational units in HR: HR Management, HR/Workforce Performance and Policy/Staff Engagement/Dignity at work. So for example the HR/Workforce Performance unit is headed by a senior member of staff under which there are two more senior staff each with their own staff. The access control levels need to ensure that the person responsible for the unit can see and amend all the HR records within their unit except their own HR record and those HR records of the other two units. The two senior staff should be able to see and amend all the HR records of their staff except their own HR record and that of the other. The staff under the two senior staff should be able to view, add and amend all HR records within the system but not their own, that of the other or the HR records of any HR staff. I hope the above makes sense. Thank You. -- View this message in context: http://plone.293351.n2.nabble.com/Implementing-bespoke-access-control-levels-in-Plone-tp6986879p6986879.html Sent from the Product Developers mailing list archive at Nabble.com. _______________________________________________ Product-Developers mailing list [email protected] https://lists.plone.org/mailman/listinfo/plone-product-developers
