Forums / General / Limiting Roles

"Please Note:

At the specific request of Ibexa we are changing this projects name to "Exponential" or "Exponential (CMS)" effective as of August, 11th 2025.
This project is not associated with the original eZ Publish software or its original developer, eZ Systems or Ibexa".

Limiting Roles

Previous topic

General

Next topic

Author	Message
Jim Rea	Tuesday 31 January 2006 11:55:05 pm I have been experimenting with policies with limited, if any success. I have a content structure that consists of Projects Groups Articles Example Project 1 Group 1 Article 1 Article 2 Article 3 Group 2 Article 1 ... Project N I have been trying to modify (limit) the Anonymous Role so that it only has rights to read all of the content of Project 1 The policies look like this: content read Node( Project 1 ) content pdf Section( Standard ) rss feed No limitations user login SiteAccess( intranet ) When I log in as an anonymous user, I am able to see unrestricted content in all Projects. What am I doing wrong. For reference - these are all of the permissions for this user Anonymous content read Node( Project 1 ) Anonymous content pdf Section( Standard ) Anonymous rss feed No limitations Anonymous user login SiteAccess( intranet ) Forum user content create Class( Forum topic ) , Section( Standard ) , ParentClass( Forum ) Forum user content edit Class( Forum topic ) , Owner( Self ) , Section( Standard ) Forum user content create Class( Forum reply ) , Section( Standard ) , ParentClass( Forum topic ) Forum user content edit Class( Forum reply ) , Owner( Self ) , Section( Standard ) Forum user content versionread Class( Forum topic , Forum reply ) , Section( Standard ) , Owner( Self ) , Status( Draft , Pending ) Forum user user selfedit No limitations Forum user user password No limitations Forum user notification use No limitations Weblog user content create Class( Comment ) , Section( Standard ) , ParentClass( Weblog ) Weblog user content edit Class( Comment ) , Section( Standard ) Weblog user content versionread Class( Comment ) , Section( Standard ) , Owner( Self ) , Status( Draft , Pending ) Thanks for your help.
Thomas Nunninger	Wednesday 01 February 2006 2:51:10 am I can't see anything wrong on the role settings. (BTW: please use the code-tags if you want to format something like table output - it's easier to read.) Did you try to clear the cache? What do you say when "I log in as an anonymous user"? You are just "logged in" as anonymous user if you are not logged in... Thomas
Jim Rea	Wednesday 01 February 2006 8:47:10 am Thomas, Thanks for the reply. Pardon the confusion. When I am logged in as a Guest User which includes an anonymous role. I figured it out content read Node( Projects , Exponential ) , Subtree( Project 1 )

Author

Message

Jim Rea

Tuesday 31 January 2006 11:55:05 pm

I have been experimenting with policies with limited, if any success.

I have a content structure that consists of
Projects
Groups
Articles

Example

Project 1
Group 1
Article 1
Article 2
Article 3
Group 2
Article 1
...
Project N

I have been trying to modify (limit) the Anonymous Role so that it only has rights to read all of the content of Project 1

The policies look like this:

content read Node( Project 1 )
content pdf Section( Standard )
rss feed No limitations
user login SiteAccess( intranet )

When I log in as an anonymous user, I am able to see unrestricted content in all Projects. What am I doing wrong.

For reference - these are all of the permissions for this user

Anonymous content read Node( Project 1 )
Anonymous content pdf Section( Standard )
Anonymous rss feed No limitations
Anonymous user login SiteAccess( intranet )
Forum user content create Class( Forum topic ) , Section( Standard ) , ParentClass( Forum )
Forum user content edit Class( Forum topic ) , Owner( Self ) , Section( Standard )
Forum user content create Class( Forum reply ) , Section( Standard ) , ParentClass( Forum topic )
Forum user content edit Class( Forum reply ) , Owner( Self ) , Section( Standard )
Forum user content versionread Class( Forum topic , Forum reply ) , Section( Standard ) , Owner( Self ) , Status( Draft , Pending )
Forum user user selfedit No limitations
Forum user user password No limitations
Forum user notification use No limitations
Weblog user content create Class( Comment ) , Section( Standard ) , ParentClass( Weblog )
Weblog user content edit Class( Comment ) , Section( Standard )
Weblog user content versionread Class( Comment ) , Section( Standard ) , Owner( Self ) , Status( Draft , Pending )

Thanks for your help.

Thomas Nunninger

Wednesday 01 February 2006 2:51:10 am

I can't see anything wrong on the role settings. (BTW: please use the code-tags if you want to format something like table output - it's easier to read.) Did you try to clear the cache?

What do you say when "I log in as an anonymous user"? You are just "logged in" as anonymous user if you are not logged in...

Thomas

Jim Rea

Wednesday 01 February 2006 8:47:10 am

Thomas,

Thanks for the reply. Pardon the confusion. When I am logged in as a Guest User which includes an anonymous role.

I figured it out

content read Node( Projects , Exponential ) , Subtree( Project 1 )