Magento - how to check non-current admin user against role resources? - magento

I know how to use isAllowed to check if the current user has access to this or that role resource. However, isAllowed() does not seem to work for any other than the currently logged in user.
I need to produce a list of administrator users with a specific permission at role resource level, how would I go about that ?

Magento - How to query admin's role name?

Related

Create Roles and Users in magento but as a non admin

My client wants the access to create users and roles in magento, i have already given him a limited users created by myself, in that users there is not permission to add users and roles.
My question: Is there any way i can give him permissions to add users and roles but, all the menus that i have made hidden should stay hidden.
What i Want to achieve
I want to give access of creating roles and users to my client, but i don't to revel some menu like "System" to him
In Magento 1.X:
System->Permission->Roles->(Role Name)->Roles Resources->Custom
In Magneto 2.X:
System->User Roles->(Role Name)->Roles Resources->Custom
To give the access for "Roles and User" you have to reveal the
"system" menu to the user as it's the parent of "Roles and User". But, you can disable other inner menus by unchecking them.
You have to only check the System > Permission > Roles > User Bosex from Roles Resouce Tree and it will only allow the user to access the Roles and User.

Magento 1.9.2.4 Admin Permission Role and Users Issue

In magento , I can create a sub-admin giving access to limited resources. But if I allow any sub-admin to create new sub-admin role and user then he is allowed to give all the access to the new sub-admin even which are not available to him..
(I mean all the module are available to him in Role Resources Tree Under add New Role, even which are not assigned to him)
For example: If sub admin is not having access to reports,Order he can not allow the reports,Order access to the other user he is creating from his access.
Any suggestions?
If you are giving User & Role access to sub-admin, then he/she can create new user as well as role. Magento doesn't check it's own access level. According to your requirement, you have to override admin Permission module.
Create custom extension to overcome from this issue or try any ready extension for it.

How do I permit only one particular user to login to active admin?

I have a application that have a lot of users and among them only one is super user. I want to use this super user account to use active admin and other users will use my custom admin dashboard.
You can have a boolean "admin" attribute on your users and then check for that attribute using a custom AuthorizationAdapter.
Check this part of the documentation for further information: http://activeadmin.info/docs/13-authorization-adapter.html

Add role to the customer and give certain permissions in Magento

I am working on the website where by using magento I need to create an account when the user is registered, then I need to give that user permission to add products to my predefined categories. I don't know how this could be done. And I really need help with this.
I think you're looking for a dropshipping extension.
This one is said to be one of the best: http://www.magentocommerce.com/magento-connect/magento-vendor-dropshipping-extension.html
There are few of these types of extensions, so a quick google search will show you all of them.
are you referring to a customer on the front-end or an admin user on the back-end?
For an admin user you can limit a admin users permissions by assigning them to a role that can only interact with the catalog module.

Magento user roles question?

I am learning through the Magento theme customization and Module creation steps, i have a question about user roles in Magento
If i have multiple stores in my website, will the admin of one store can access details of another store. And is there any super admin like user role who can view all the stores products?
Thanks
The backend for magento is one so different users with different privilege can enter the same backend for all store...
you can also limit access of user to different features and configurations. Like you can give one user the privilege to see orders and another one to approve invoices.
Plus you can define the scope so that one user can enter certain store values.
The default admin have access to all store all features.

Resources