headers
Sebastian Bijak | 2 Oct 16:39
Picon

A question about security

Hi

What i understood so far is that i must set two levels of security. First one
for example at portal type Person Module i must map roles for users so they can
see it at erp site. At this level i must also set a permission to add new
persons so the user could use Add Person action. Second level of security
defines accessability to Person information. At this level i set permission to
edit Person and gives roles needed to use workflow. Please tell me if i'm wrong.
I have a little problem with security when i map a role for a person, for
example when i give some user an Auditor role the permissions look like already
defined. It doesn't matter that, at security tab for chosen portal type,
permissions for Auditor are not selected. The user that has Auditor role can see
module and access it as the Assignor can add new contents and edit them. How can
i clear this settings to give permissions as i want?

regards
Sebastian
Permalink | Reply | 3 comments |
headers
bartek | 2 Oct 17:13
Picon

Re: A question about security

Hi

Actually, it is much more complicated than that...

First of all, if you are using Security tab of portal type, then you are 
in the wrong place - this defines security to the portal type, and has 
no impact on security settings to objects of this portal type. You can 
change permissions to an object by checking/unchecking boxes on Security 
tab of the particular object, like:
erp5/sale_opportunity_module/30/manage_access
but normally you don't need it. Security settings are calculated by a 
very sophisticated machinery, which uses portal type roles, workflows 
and a number of scripts.

To get started, read this:

http://en.wikibooks.org/wiki/ERP5_Handbook/Getting_Started#Introduction_to_security
http://wiki.erp5.org/HowToDesignSecurity
http://wiki.erp5.org/HowTo/HowToUseNewSecurity

Bartek

Sebastian Bijak wrote:
> Hi
> 
> What i understood so far is that i must set two levels of security. First one
> for example at portal type Person Module i must map roles for users so they can
> see it at erp site. At this level i must also set a permission to add new
> persons so the user could use Add Person action. Second level of security
> defines accessability to Person information. At this level i set permission to
(Continue reading)

Permalink | Reply | 2 comments |
headers
Sebastian Bijak | 4 Oct 12:56
Picon

Re: A question about security

I read that earlier but i had to misunderstood something. Now it works almost as
i want. Thanks.
Permalink | Reply | 1 comment |
headers
bartek | 4 Oct 13:23
Picon

Re: A question about security

Sebastian Bijak wrote:
> I read that earlier but i had to misunderstood something. Now it works almost as
> i want. Thanks.

Good job - I know it is not easy to make ERP5 security run. If you need 
more help, go ahead and ask.

Bartek
PS. You can also use erp5-poland mailing list if it is more convenient.

> 
> _______________________________________________
> Erp5-users mailing list
> Erp5-users <at> erp5.org
> http://mail.nexedi.com/mailman/listinfo/erp5-users
> 

--

-- 
"feelings affect productivity. (...) unhappy people write worse 
software, and less of it."
Karl Fogel, "Producing Open Source Software"
Permalink | Reply | 0 comments |
headers
Sebastian Bijak | 8 Oct 15:53
Picon

Object side security settings - Dynamic calculation

Do i need to store a property as an object to get the required value in script
used for dynamic calculation ?
Permalink | Reply | 3 comments |
headers
Jean-Paul Smets | 8 Oct 16:11
Favicon

Re: Object side security settings - Dynamic calculation

Sebastian Bijak a écrit :
> Do i need to store a property as an object to get the required value in script
> used for dynamic calculation ?
>
> _______________________________________________
> Erp5-users mailing list
> Erp5-users <at> erp5.org
> http://mail.nexedi.com/mailman/listinfo/erp5-users
>   
Hi,

Please explain more with examples.

Regards,

JPS.

--

-- 
Jean-Paul Smets-Solanes, Nexedi CEO - Tel. +33(0)6 29 02 44 25
Nexedi: Consulting and Development of Libre / Open Source Software
http://www.nexedi.com
ERP5: Libre/ Open Source ERP Software for small and medium companies
http://www.erp5.org
Permalink | Reply | 2 comments |
headers
Fabien Walch | 9 Oct 05:05

(no subject)

Hello everybody,
 
I want to implement ERP5 in my company but I want to try it first. So I downloaded the ERP5 live CD. I have a Windows computer. When I boot the Cd  I received to kinds of message :
 
1- "Unable to mount loop filesystem
     losetup/dev/loop 0 initrd/cdrom/livecd.sqfs
     mont-r-t squashfs/dev/loop <at> initrd/loopfs
     dropping you to a limitedshell"
 
2- "initrd/loopfs/etc/xii
     xmodmap : no such file or directory"
 
Please let me know if somebody can help me to use the Live CD with Windows.
 
 
Thanks in advance.
 
Fabien Walch
_______________________________________________
Erp5-users mailing list
Erp5-users <at> erp5.org
http://mail.nexedi.com/mailman/listinfo/erp5-users
Permalink | Reply | 0 comments |
headers
Sebastian Bijak | 9 Oct 14:04
Picon

Re: Object side security settings - Dynamic calculation

In Handbook in section Back to the (almost) real example there is an exemplary
script for dynamic calculation. I'm asking about 5th line of this script:

city = customer.getDefaultAddressCity()

In this line there is DefaultAddress and City. I've found default_address as
storage_id in PropertySheet/Person.py for property address and as
acquisition_object_id in category region. City is in PropertySheet/Person.py as
acquired_property_id for property address. Type of property address is "content".
"How to store a property as a subobject" refers to Programmable acquisition
sectio 'content' data type. So i guess that default_address is an object and
properties such as region, city, zip_code and street_address are stored in it.
So i'm asking if i have to store properties this way to get their values in 
script ?

regards
Sebastian
Permalink | Reply | 1 comment |
headers
bartek | 9 Oct 14:38
Picon

Re: Object side security settings - Dynamic calculation

Sebastian Bijak wrote:
> In Handbook in section Back to the (almost) real example there is an exemplary
> script for dynamic calculation. I'm asking about 5th line of this script:
> 
> city = customer.getDefaultAddressCity()
> 
> In this line there is DefaultAddress and City. I've found default_address as
> storage_id in PropertySheet/Person.py for property address and as
> acquisition_object_id in category region. City is in PropertySheet/Person.py as
> acquired_property_id for property address. Type of property address is "content".
> "How to store a property as a subobject" refers to Programmable acquisition
> sectio 'content' data type. So i guess that default_address is an object and
> properties such as region, city, zip_code and street_address are stored in it.
> So i'm asking if i have to store properties this way to get their values in 
> script ?
> 

No, you can store them directly and use standard accessors. Actually, this:
customer.getDefaultAddressCity()
is the same as:
customer.default_address.getCity()

(or, to be very precise):
hasattr(customer, 'default_address') and 
customer.default_address.getCity() or ''

And
customer.setDefaultAddressCity('xxx')
is roughly equivalent to:
if not hasattr(customer, 'default_address'):
   customer.newContent(id='default_address', portal_type='Address')
customer.default_address.setCity('xxx')

You can get many properties directly from a Person, like:
customer.getFirstName()

Bartek

> regards
> Sebastian
> 
> _______________________________________________
> Erp5-users mailing list
> Erp5-users <at> erp5.org
> http://mail.nexedi.com/mailman/listinfo/erp5-users
> 

--

-- 
"feelings affect productivity. (...) unhappy people write worse 
software, and less of it."
Karl Fogel, "Producing Open Source Software"
Permalink | Reply | 0 comments |
headers
Vesta @ Ellaroo | 14 Oct 02:59

Qs before I sign up for ERP5 Express

Before I sign up for the Express package, I have a couple of questions I couldn't find answers to in the documentation I read online. First, does the package have EDI functionality (Electronic Data Interchange)? I don't know if this is used anywhere but in the US, but it's required here by the larger retailers, with whom we deal. Second, are there any third party companies, for instance in the US, who we can contract with to make custom developments for us? We are a small manufacturer in an apparel-type category, and don't have anyone on staff who can develop. I didn't see a list of third party companies.

Thank you,
Vesta Garcia

_______________________________________________
Erp5-users mailing list
Erp5-users <at> erp5.org
http://mail.nexedi.com/mailman/listinfo/erp5-users
Permalink | Reply | 1 comment |

Gmane