Re: [Product-Developers] Implementing bespoke access control levels in Plone

Fri, 11 Nov 2011 20:44:05 -0800 

Would an alternative be to create a view template that checks if the logged in 
user is attempting to look at their own record, and prevent that?

        Kim

On Nov 11, 2011, at 3:59 PM, Imran Azad wrote:

> I would like some advice on customising Plone to implement some bespoke
> access control levels. 
> 
> I am using Plone as a document management system for HR records and I need
> to build some bespoke access control levels. The HR record of each employee
> will be a folder with sub-folders inside it. The only people who will have
> access to the system to view, add and amend the HR records will be the HR
> administration staff and some senior HR staff members.
> 
> This is where the bespoke requirements come in. Access control levels need
> to be established for the HR staff folders. There are three organisational
> units in HR: HR Management, HR/Workforce Performance and Policy/Staff
> Engagement/Dignity at work. So for example the HR/Workforce Performance unit
> is headed by a senior member of staff under which there are two more senior
> staff each with their own staff. The access control levels need to ensure
> that the person responsible for the unit can see and amend all the HR
> records within their unit except their own HR record and those HR records of
> the other two units. The two senior staff should be able to see and amend
> all the HR records of their staff except their own HR record and that of the
> other. The staff under the two senior staff should be able to view, add and
> amend all HR records within the system but not their own, that of the other
> or the HR records of any HR staff.
> 
> I hope the above makes sense.
> 
> Thank You.
> 
> --
> View this message in context: 
> http://plone.293351.n2.nabble.com/Implementing-bespoke-access-control-levels-in-Plone-tp6986879p6986879.html
> Sent from the Product Developers mailing list archive at Nabble.com.
> _______________________________________________
> Product-Developers mailing list
> [email protected]
> https://lists.plone.org/mailman/listinfo/plone-product-developers

_______________________________________________
Product-Developers mailing list
[email protected]
https://lists.plone.org/mailman/listinfo/plone-product-developers

Reply via email to