Sign in Register
Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at


  • Mike Chambers 636 posts 1253 karma points c-trib
    Feb 04, 2011 @ 11:48
    Mike Chambers
    0

    User set as editor, can edit the editor type permissions!!!

    I'm struggling to get my head around the sercurity model in the users area.

    If I create a user as an editor, when they log in the default is that they can still access the user area, and change the permissions on the editor user type, and alter there own user type..

    Is this how it should be working?

    Copy Link
  • Mike Chambers 636 posts 1253 karma points c-trib
    Feb 04, 2011 @ 11:50
    Mike Chambers
    0

    (ps u4.5.2, iis7, server 2008, medium trust, .net 3.5)

    Copy Link
  • Jan Skovgaard 11280 posts 23678 karma points MVP 11x admin c-trib
    Feb 04, 2011 @ 11:55
    Jan Skovgaard
    0

    Hi Mike

    It depends...

    What have you chosen to give them access to under "sections"? If all sections have been checked then it makes sense. Are you sure that the user has been saved as an editor and not an administrator?

    /Jan

    Copy Link
  • Mike Chambers 636 posts 1253 karma points c-trib
    Feb 04, 2011 @ 12:00
    Mike Chambers
    0

    model I was going to use...

    internal team - administrators

    client - Editor + User Admin

    clients copywriter - writer

     

    This so that the client can add there own copywriters.  (without having to have 2 logins)

    But like I say a I'm seeing a user set as an editor and given access to the users area can amend there own permissions (to areas), and the permissions on the editor user type.

    Shouldn't it be that only admin can amend usertype info and their own settings, but anyone else shouldn't be able to change their own settings or usertype permisions?

     

    Mike

    Copy Link
Please Sign in or register to post replies

Write your reply to:

Draft