+1-888-365-2779
Try Now
More in this section

Forums / Security / Users with Multiple roles

Users with Multiple roles

5 posts, 0 answered
  1. Vijaianand
    Vijaianand avatar
    94 posts
    Registered:
    09 Jul 2012
    26 May 2011
    Link to this post
    Hi

    Before posting, I checked the forum and couldn't find the answer. Here is the problem,
    I have 4 roles, Admin, Publisher, Approver, Author.

    Each one has their own set of permissions. I didn't set any deny for the roles.
    I assigned multiple role for a user like Author, Approver & Publisher and hope it will also accordingly but it didn't. The user was initially Approver and user is still an approver after assigning other roles. What is the problem here? Any solution to solve?

    Vijai
  2. Ivan Dimitrov
    Ivan Dimitrov avatar
    16072 posts
    Registered:
    25 Nov 2016
    27 May 2011
    Link to this post
    Hello VIJAIANAND,

    Permissions are set per object or provider. It depends on the context where you are using this user. If a given permission is not explicitly set as denied this does not mean that the user will be able to work with the object.

    Greetings,
    Ivan Dimitrov
    the Telerik team
    Do you want to have your say in the Sitefinity development roadmap? Do you want to know when a feature you requested is added or when a bug fixed? Explore the Telerik Public Issue Tracking system and vote to affect the priority of the items
  3. Vijaianand
    Vijaianand avatar
    94 posts
    Registered:
    09 Jul 2012
    27 May 2011
    Link to this post
    Ivan,

    I know what you mean. But they work individually fine. If I apply an user with Auth role, it acts as expected. But I have problem only when I apply them together. Is there anything which takes precedenc in the group of roles applied? I thought it should work as OR clause.

    Vijai
  4. Ivan Dimitrov
    Ivan Dimitrov avatar
    16072 posts
    Registered:
    25 Nov 2016
    30 May 2011
    Link to this post
    Hello VIJAIANAND,

    Deny has higher priority than allow and I suppose this is from where the confusion comes from.

    All the best,
    Ivan Dimitrov
    the Telerik team
    Do you want to have your say in the Sitefinity development roadmap? Do you want to know when a feature you requested is added or when a bug fixed? Explore the Telerik Public Issue Tracking system and vote to affect the priority of the items
  5. Vijaianand
    Vijaianand avatar
    94 posts
    Registered:
    09 Jul 2012
    31 May 2011
    Link to this post
    Ivan,

    I think I mentioned earlier, I don't have any deny set for any of the rules. Is it considered default deny if no options selected? I have allow only selected on each roles and thought they should work mutually exclusive when we have multiple roles.

    For example,

    Author: create content - allow
    Approver - approve content - allow

    If user has both author and approver, they should have both allowed to do things. But it doesnt seems to be work that way.

    Vijai
Register for webinar
5 posts, 0 answered