I want to have two auth_groups: "administrator" who will have complete CRUD
access to all tables, and "editor" who will have complete CRUD access to a
limited set of tables. I can give "administrator" access without even
setting up permissions by doing the following:
> @auth.requires_membership("administrator")
> def data():
> return dict(form=crud())
Supposedly crud() will automatically detect permissions if you name them
the right way. Assume I created a permission like this in appadmin:
> Group ID: editor (2)
> Name: create
> Object or table name: person
> Record ID: 0
If I'm logged in as a user in the "editor" group and visit
> http://127.0.0.1:8000/testapp/default/data/create/person
I get a Not authorized ACCESS DENIED message. Should I be setting up my
auth_permission differently, or maybe use another decorator?
Thanks is advance for any help.
Greg
--
---
You received this message because you are subscribed to the Google Groups
"web2py-users" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
