Tony V
|
| Posted: 06/24/2002, 1:40 PM |
|
My apologies if this question has already been answered.
We are looking to set up a system for our departmental web page where professors will have access to edit only their articles (their own content). Professor 1 should not be able to edit the content of professor 2, etc. There also needs to be an admin account that is able to edit anyones content. Is this possible to achieve using the security settings in CCS (using php w/templates).
Kind regards,
Anthony V
|
|
|
 |
FOLKERTS
|
| Posted: 06/24/2002, 2:16 PM |
|
yes that is possible,
ive build something like that for the university of wageningen in holland. It's a logical search engine where differend profs can edit and add their minors and majors. u can find it on www.dpw.wau/mlobase and the prof side at www.dpw.wau.nl/onderwijsgroep the security is in groups where the content is limited with an unique identifier for each user. Take a look and if you like what u see or have any questions you can always mail me atm.folherts@chello.nl
|
|
|
|
Nicole
|
| Posted: 06/26/2002, 2:51 AM |
|
you can create 2 users groups: admins and lets say users. Using security dialog for the page and record form you can restrict access to the page and/or operations on the form (read, Insert, Update, Delete).
As for Grid, create two pages:
- for administrator. List all available records there;
- for users. To list only records that belong to logded in user add parameter in DataSource dialog with parameter settings like:
Name: UserID
Type: Session
In order to forbid users edit record belong to other user in case user just change the value of parameter passed through url you should check passed value in form Before Show event. Scenario: catch the passed value, look up corresponding user_id value and compare it to user_id stored in session. In case they are different, it means that user tried to access the record that belong to other user. In this case you can redirect him to any other page.
|
|
|
|
|
