On Monday, October 24, 2011 5:29:41 PM UTC-4, lucas wrote: > > ok, that was totally helpful, thanx for all of the help. > > i have gotten far, using has_membership and requires_membership often > and working perfectly, both in controllers and views. > > having a bit of a problem with auth.has_permission(). i have a group/ > role, auth_group id=2, called Guest and under auth_permission, id=2 > also, with group_id=2 with name="News Restricted". table_name is Null > and record_id=0. i also have an entry under auth_user with id=2, > email 'fd...@gmail.com' just for fun, and an entry under > auth_membership, id=4, with user_id=2 and group_id=2. so all that > means is that user fd...@gmail.com should be a Guest with permission > set to true for "News Restricted". ok? > > how come when fd...@gmail.com is logged in, auth.has_permission('News > Restricted') proves False. Shouldn't it be True? >
>From your description, sounds like it should be True. Maybe try specifying an "object" in the permission as well -- e.g., auth.add_permission(group_id=2, name="read", table_name="news"). Note, table_name doesn't have to be an actual table -- it can be any arbitrary concept. For example, if you have a function that returns some news, you could decorate it with @auth.requires_permission('read', 'news'). Anthony