Blueprint changed by rejon: Whiteboard changed: good idea, added the field to the db for now, and started the implementation Ok notice this already exists: https://blueprints.launchpad.net/aikiframework/+spec/widget-group-level ### any progress on this? Jon reassigned to jcubic, fosdevel is gone - Jon Reassigned to rg1024 who express interest - Jon here's his email: #### Feel free to take over this blueprint. I think that Aiki the permissions system needs to be clearly documented. If I remember correctly, a 'SystemGod' is basically top-level/admin Aiki permission which has access to everything. This is somewhat of an issue, when you have many system Gods that all have access to everything including widgets. My idea was that in the context of the Aiki admin interface, you could have owners and groups enforced on widgets. So, other admins won't have write or read access in the Aiki admin interface. On a side note, I'm quite involved in working on the Aiki update system as this is no small task. Please, forgive me if I don't reply to future emails regarding the widget-privilege. By the way, thanks for your contributions to Aiki! Great work! :-) #### what is widget privileges? what is wrong with the current permissions group? what is ownership? r + w? who understand that? I don't. plus no one is working on this. this will never happen and will not be useful #### is like on Unix/Linux systems where every file have it owner and the group. and you have 3 permissions for owner for the group and for everyone else - read, write and execute. for instance: you will have widget - /admin - and that widget have owner "jon" the group admins you you have for owner and the group rwx - (read write) and r read for other users. If there is jcubic user which belong to the group admins then he can edit that widget. And jon always can edit the widget now matter if his a admin or not because he is the owner of that widget (he created it). So if user is librarian belong to the group libriarians he can't edit this admin widget. but he can see it content. if there is a widget remove-comment that belong to betty and betty is a librarian then when she create that widget it have owner betty and the group librarian. if it have permissions rxw for group then every user that is a librarian can edit and execute that widget. Jon can't edit that widget nor execute it unless hes is also a librarian (belong to the list of librarians) + + ### + + Yes Jcubic this is important. Opening for discussion unless bassel can + show how this works now. + + We need better permission system in aiki that is not hacky. -- Jon
-- Widget Privileges https://blueprints.launchpad.net/aikiframework/+spec/widget-privilege _______________________________________________ Mailing list: https://launchpad.net/~aikiframework-devel Post to : [email protected] Unsubscribe : https://launchpad.net/~aikiframework-devel More help : https://help.launchpad.net/ListHelp
