> >You want these users to log in to Asgard? > > No. These users should not. The only thing, these users should do, is to > update there person-object and to comment articles (create replies), but > through the website (with mgd_ functions). I think, that it is not > possible, to deny them the login into asgard, but I hope, there is another > possibility, to secure Asgard.
I see.... OK 1. You create user with mgd_create_person. right? You do not have to add here login name and pass. 2. User can not to log in to any admin interface 3. You add this user to some group which should be owner of topics and articles You want to edit etc. 4. You create one person and add this person to the same group. 5. Create snippet with this special person auth (to avoid showing password in case of any error) 6. You act like no login person but modify as special person You created. (you should be also to change "on the fly" $object->creator Another much more secure idea 1. You create another "empty" SG , just for creating person and groups 2. You create persons with login and pass 3. You create one special person for Your SG 4. You act like another SG person while auth as this special person All auth must be supported with you in background for SG, that way is user log in as "john" "my pass" You have to change it to "john+SG" "my pass". I don't think there is any possibility in these two cases to let user to log in to Asgard any way. One possibility of-course - user break Your admin pass and login :) Piotras --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
