the permission are programmed in to widgets, ftl and services. there are two parts to a permission XXXX is the permission YYYY is that action XXXX_YYYY XXXX_VIEW for permission. _VIEW should only allow seeing data. note the _ preceding it. if you want to granularize something more then created a new section or Permission XXXX_ here are the permission groups https://demo-trunk.ofbiz.apache.org/webtools/control/FindGeneric?entityName=UserLoginSecurityGroup&find=true&VIEW_SIZE=50&VIEW_INDEX=0 and add the following _CREATE _UPDATE _DELETE _VIEW _ADMIN https://demo-trunk.ofbiz.apache.org/webtools/control/FindGeneric?entityName=SecurityGroupPermission&find=true&VIEW_SIZE=50&VIEW_INDEX=0 like !security.hasPermission("LEARN_VIEW",(GenericValue)context.get("userLogin"))) <if-has-permission permission="ORDERMGR" action="_VIEW"/>
If you find others that are different they are not following the best practices. ======================= BJ Freeman http://bjfreeman.elance.com Strategic Power Office with Supplier Automation <http://www.businessesnetwork.com/automation/viewforum.php?f=93> Specialtymarket.com <http://www.specialtymarket.com/> Systems Integrator-- Glad to Assist Chat Y! messenger: bjfr33man Linkedin <http://www.linkedin.com/profile?viewProfile=&key=1237480&locale=en_US&trk=tab_pro> Christopher Snow sent the following on 5/15/2010 2:28 PM: > There are two options when creating/editing a Product Catalog: > > - Permission required to add product to "ViewAllow" category > - Permission required to add product to "PurchaseAllow" category > > What do these options actually do? > > Many thanks, > > Chris >
