Hi Ferran! > I have been struggling with WebAccess and the viewrestrcoll action > trying to restrict access to some collections, but I'm afraid I need a > friendly hand to guide me with it. > > What we pretend is: we want to restrict access to a series of > collections o, more precisely, to the records belonging to those > collections. We'd like to grant this access to a all users that > belong to some of the groups we already have created. All other user > and, among them, anonymous users, should not be able to see those > records or collections. > > Which steps, and in which order, do we have to follow?
You'd need to apply fireroles to roles. - First thing is to create the groups and add people to them. You have this already - Then you create a role via /admin/webaccess/webaccessadmin.py/addrole - There you put a firerole for access, e.g. allow groups 'STAFF' allow groups 'STAFFNOMAIL' - Keep newlines in tact - You select this role - You add an authorization - You add viewrestrcol with proper collection name If you need this for a bunch of collections we could also help you out with some script that just call this API in sequence. Having some 500 of these guys here at DESY we don't do it by hand. ;) -- Kind regards, Alexander Wagner Deutsches Elektronen-Synchrotron DESY Library and Documentation Building 01d Room OG1.444 Notkestr. 85 22607 Hamburg phone: +49-40-8998-1758 fax: +49-40-8994-1758 e-mail: [email protected]
