cocoon-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Carsten Ziegeler" <>
Subject RE: User authentication and roles
Date Mon, 06 May 2002 08:35:57 GMT

> -----Original Message-----
> From: Bert Van Kets []
> Sent: Friday, May 03, 2002 10:39 PM
> To:
> Subject: User authentication and roles
> I need to use teh roles in the user authentication and have been tying to
> get *something* going all day, with no succes.  I've read the
> docs at least
> ten times, but can't find the way to get it going.
> What I need:
> I have several types of users.
> - The simplest ones only can access the member section
> - The authors can only access the section they are responsible for.
> In a later phase I want to give or restrict access to specific pages, but
> that's not really necessary for the moment.
> How do I add/check user roles?  In the sitemap a coplet parameter is sent
> to the portal-auth action, but it's not documented.
Hi Bert,

the portal-auth action is document in the portal documentation of the
section. It performs an extra protection of a pipeline, like the normal
"auth-protect" action:

In this example the coplet is protected by the use of the parameter
tag inside the "portal-auth" action. Only if the user is allowed to
view/configure the coplet with the ID "licencing", he can invoke this
If this security command is left out, everyone is able to get the resource
simply invoking it directly from the browser. However, if the coplet is
protected it is not necessary that a user has choosen that coplet for his
current portal view to invoke the resource. In addition it is possible to
specify the parameter without a specific coplet name. This protects the
resource as a coplet: Only users which are logged in to the portal can view

So if you have the following:

Please check that your question has not already been answered in the
FAQ before posting. <>

To unsubscribe, e-mail: <>
For additional commands, e-mail: <>

View raw message