Hi,
as I've explained I have a hierarchical role structure:
orgA
/- Users
/- Internal User
/- External User
/- Admin
/- Apps
/- App1
/- App2
I created a loginmodule in tomcat to authenticate the user credentials
(not an admin connection) and get the user object
(user/request/read/self)
>From that object I can get the memberships, however I cannot get the
roles themselves since the user needs Role_read on the roles that were
assigned, which is not very handy if subroles are added.
I could got about it another way by having a special connection to
core but how do you specify that a special user only has read
permissions on users & roles?
I want to avoid using the default admin user.
Any thoughts?
regards
Bob
