In Joomla 2.5 I have a custom component installed that is only available to the Administrator. I would like to make this component available to the Manager Group as well.
Can someone please tell me what file I must edit? Is it an XML file in the administrator/components/name_here/? Or is this a lot more complicated than I think?
I hope I am reading the right file, this Joomla system is a mad hatter.
It's not just an XML file your component will need to check the permissions a user has.
Since Joomla! 1.6 there is an extensive Access Control (ACL) mechanism implemented for front-end and backend access. You can define an unlimited number of Groups all with different access levels on a per component basis (this presumes that the component is written correctly). The default groups that are created with the initial setup can be deleted or renamed and may not to exist on all installations, users can create groups of any name with any range of permissions.
I would recommend starting with the Access Control List/2.5/Tutorial this will give you a better understanding of the new ACL.
Then from the "Developing a Model-View-Controller Component/2.5" tutorial, re-read "Adding ACL" article, if you need custom rules you will probably want to read the Adding ACL Rules to your component article as well.
Related
In magento I am having 3 websites and it contains 6 to 7 store views. I want as a single admin has to access single store products only. He should not modify the products in another stores. How can I do this?
I have read in magneto documentation as to create new admin in system/permissions/roles and modify there. But trying with this, the new admin is restricted to only creating of products or for dashboard or for shippings or for tax module only. But I need like the new admin has to be accessed to only one store only..
So how can I do this??
I know this is a little late reply but anyone who is interested, answer from mprototype is perfectly valid as long as you/your client uses a Magento Enterprise edition. Checked in versions 1.12 and above.
When you goto :
System -> Permissions -> Roles
While defining the role you can choose custom scope and checkbox the stores you want then to have access to.
I don't know if I am late but any of these will do what you are looking for. In fact, it will provide even more flexibility.
http://www.aitoc.com/en/magentomods_advanced_permissions.html
http://amasty.com/magento-advanced-permissions.html
Happy Coding !!!
I have created a site where registered users can publish articles.
Is there a way to make the articles they publish be enabled automatically without me, as administrator, have to check if there are new articles submitted.
EDIT 1: Found a solution by setting the mysql default value of state to 1 from 0. But, is this a good way?
The ability to publish is controlled by the edit.state permission. You would want to give edit.state allow for registered for either all of content or just for specific categories they are allowed to publish in.
I am using Pyrocms for an application. There is a module available for File managment. Although it is good enough but i need to customize it according to my requirements.
Here are the requirements
For each file admin from backend can create multiple temporary links
Each file should be limited to some time duration defined by admin
And download limit should be 3 for each user
Now i need suggestions how i can do these tasks to accomplish the application.
Do i need some more tables to handle the situation?
Or can i extend existing file table.
What about temporary links how can i create them and let user download the file?
Another requirement if user uses the link, download popup comes and he cancels three times i have to restrict him now that he can not download it now.
So using ip will do it or some other suggestion.
If i have to send multiple links to a single user through email then how can i customize the File modules to fit my needs.
Please give some suggestion.
Would the Download module help at all?
This all sounds like it should be an extra module, as the Files job is just to handle Files. Downloads are a very different aspect, but you can use the Files library in PHP to get lists of files and server them up?
So:
Files handles Files.
Downloads handle the downloading of "Files"
If the Download module by Authur Guy is not good enough for your needs you should definitely think about building one and selling it on the store.
I am looking for a module/extension, or something that can help me to
make a page/item that only one specific user registered can see.
I would like also create a space dedicated to this user, where i can publish there pages and aticles.
Maybe using php and the variable that contains the username and an iframe, but I dont know how to doit.
Thank for the help
GMAccess is a Joomla! component that makes managing groups and access permissions easy, you will be able to create a special group and add your user (via Joomla's user management) to it and manage which pages can be viewed by that group.
Does it affect the way joomla authenticate users if I add a custom user groups in the Joomla 1.5.15 and does it make it less secure?
I'm planning to add a custom group using the table jos_core_acl_aro_groups as described at http://docs.joomla.org/Custom_user_groups.
But someone told me that if I add a new user group and the group_id is greater than 25 (this is the ID of the Super Administrator), that new group will have the same access as the super admin in the default joomla core files without changing anything just the additional user group. Is this true?
Don't you have a local instsall of Joomla to try this?
Anyways, it's not true because it can't be, why should the group_id define the access rights? That would be a terrible ACL implementation. But please try it, before you actually use it live.
In Joomla 1.5 you can make user groups but they will have one of the existing role patterns. In Joomla 1.6 (alpha) there will be full flexibility in defining your groups, roles and granular ownership settings for each article, module, etc.
There are several extension you can find at:
http://extensions.joomla.org/extensions/access-a-security
Which enhance the core ACL functions. Give them a look and you'll probably find the solution without hacking the core files.