Forums

Skip Navigation LinksHome / Developer Network / Forums / Sitefinity Older Versions (3.x): Security > Users with Multiple roles

Users with Multiple roles

Feed from this thread
  • VIJAIANAND Intermediate avatar

    Posted on May 26, 2011 (permalink)

    Hi

    Before posting, I checked the forum and couldn't find the answer. Here is the problem,
    I have 4 roles, Admin, Publisher, Approver, Author.

    Each one has their own set of permissions. I didn't set any deny for the roles.
    I assigned multiple role for a user like Author, Approver & Publisher and hope it will also accordingly but it didn't. The user was initially Approver and user is still an approver after assigning other roles. What is the problem here? Any solution to solve?

    Vijai

    Reply

  • Ivan Dimitrov Ivan Dimitrov admin's avatar

    Posted on May 27, 2011 (permalink)

    Hello VIJAIANAND,

    Permissions are set per object or provider. It depends on the context where you are using this user. If a given permission is not explicitly set as denied this does not mean that the user will be able to work with the object.

    Greetings,
    Ivan Dimitrov
    the Telerik team
    Do you want to have your say in the Sitefinity development roadmap? Do you want to know when a feature you requested is added or when a bug fixed? Explore the Telerik Public Issue Tracking system and vote to affect the priority of the items

    Reply

  • VIJAIANAND Intermediate avatar

    Posted on May 27, 2011 (permalink)

    Ivan,

    I know what you mean. But they work individually fine. If I apply an user with Auth role, it acts as expected. But I have problem only when I apply them together. Is there anything which takes precedenc in the group of roles applied? I thought it should work as OR clause.

    Vijai

    Reply

  • Ivan Dimitrov Ivan Dimitrov admin's avatar

    Posted on May 30, 2011 (permalink)

    Hello VIJAIANAND,

    Deny has higher priority than allow and I suppose this is from where the confusion comes from.

    All the best,
    Ivan Dimitrov
    the Telerik team
    Do you want to have your say in the Sitefinity development roadmap? Do you want to know when a feature you requested is added or when a bug fixed? Explore the Telerik Public Issue Tracking system and vote to affect the priority of the items

    Reply

  • VIJAIANAND Intermediate avatar

    Posted on May 31, 2011 (permalink)

    Ivan,

    I think I mentioned earlier, I don't have any deny set for any of the rules. Is it considered default deny if no options selected? I have allow only selected on each roles and thought they should work mutually exclusive when we have multiple roles.

    For example,

    Author: create content - allow
    Approver - approve content - allow

    If user has both author and approver, they should have both allowed to do things. But it doesnt seems to be work that way.

    Vijai

    Reply

    • Register for webinar
Skip Navigation LinksHome / Developer Network / Forums / Sitefinity Older Versions (3.x): Security > Users with Multiple roles