[ZDP] BackTalk to Document The Zope Book (2.5 Edition)/Users and Security

webmaster@zope.org webmaster@zope.org
Wed, 09 Oct 2002 22:28:50 -0400

A comment to the paragraph below was recently added via http://www.zope.org/Documentation/Books/ZopeBook/current/Security.stx#3-93


      When you create users at this higher level, you should not give them
      the *Manager* role, but instead give them Scientist or SalesPerson as
      appropriate. Then you should set the security policies.  On the
      *Science* folder the *Scientist* role should have the equivalent of
      *Manager* control. On the *Sales* folder, the *Salesperson* role
      should have the same permissions as *Manager*. Finally on the
      *AdsWithComplexWarnings* folder you should give both *Scientist* and
      *Salesperson* roles adequate permissions. This way roles are used not
      to provide different levels of access, but to provide access to
      different locations based on who you are.

        % Anonymous User - Oct. 9, 2002 10:28 pm:
         Just to clarify: do you grant the extra permissions on the Science and Sales, and AdsWithComplexWarnings,
         folders using "local roles"?