-
1. Re: BB question
jae77 Jun 26, 2004 1:46 PM (in response to lonicera)how did you go about setting up the correct permissions for the users?
-
2. Re: BB question
lonicera Jun 27, 2004 5:45 AM (in response to lonicera)Anonymous :: None
Users :: Delete
Admins .*:.*:.* Admin
Above is my bb Permission setting. By this Admins read/delete/edit every posts, but users can only post - not edit/delete.. -
3. Re: BB question
jae77 Jun 27, 2004 12:17 PM (in response to lonicera)just to clarify, are you looking for users to have the ability to edit/delete their own posts, or category moderation where a user can edit/delete any post on a topic?
-
4. Re: BB question
lonicera Jul 1, 2004 10:41 AM (in response to lonicera)"jae77" wrote:
I'd like to have users edit/delete their own posts. But my setting as my last post have all users edit/delete every post include other user's posts.
just to clarify, are you looking for users to have the ability to edit/delete their own posts, or category moderation where a user can edit/delete any post on a topic? -
5. Re: BB question
jae77 Jul 1, 2004 11:13 AM (in response to lonicera)ok...
1) i believe there is a bug in the forums code that checks to see whether or not a user can edit his/her own posts even if they have the correct privs as set by the forum security manager. i already know where the issue is and will work on a fix.
2) if you want all users to be able to edit any one else's posts, etc, then you have to setup a group permission using the permissions module. at the moment, i forget what the correct security string looks like, but i can post back later w/ that info.
1 and 2 are somewhat independent issues, b/c if you configure permissions using #2, then it superceeds any permissions set by #1. i believe this is correct based upon what i see (i can moderate the nukes forums [delete, edit, etc], but i don't have that ability any where else in the forums [even in my own posts]). -
6. Re: BB question
jae77 Jul 1, 2004 3:24 PM (in response to lonicera)you need to add the following security pattern (using the permissions module) for the forums.
Admins .*:.*: ADMIN
Users .*:.*: ????
if you want to allow moderators for specific categories, you'd do this (assuming you have a category named Foo)
Users Foo:.*: Level
if you wanted to allow moderators for a specific forum (assuming you have a forum named Bar), you'd do this:
Users .*:Bar: Level
you could also do a specific category and forum
Users Foo:Bar: Level
----
i will work on a fix to allow individual users to edit their own posts as well.
the issue stems from the fact that isIdentical method on the EJBObject uses the jndiName in it's comparison.
what happens is the UserEJBLocal reference that is returned from the Api class has a different jndiName from the UserEJBLocal reference that is returned from the forums w/ information about the poster.
given what we are doing, i think it will be safe to just use the user_id in the comparision to see if the person who posted message is the same one who is currently reading it. -