13 Jun
2012
13 Jun
'12
5:02 p.m.
I've created an app with app within minutes.
A normal user gets the following error:
Error
You are not allowed to view this document or perform this action.
What can cause this error, the space has the right rights set. (View, Comment and Edit; no
Delete or Admin)
No document level security. Other documents in the space can be seen…
The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have modified the
documentsheetbinding
The LiveTableViewSheet has been copied from app within minutes space into CdLSATEPrivat
space
Is there any groovy scripts that can not be used by normal users?
Gerritjan
14 Jun
14 Jun
11:58 a.m.
New subject: [xwiki-users] Error -You are not allowed to view this document or perform this action.
On Wed, Jun 13, 2012 at 8:02 PM, Gerritjan Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
I've created an app with app within minutes.
A normal user gets the following error:
Error
You are not allowed to view this document or perform this action.
On which page and which action? URL? (you can strip the domain part).
What can cause this error, the space has the right rights set. (View, Comment and Edit;
no Delete or Admin)
No document level security. Other documents in the space can be seen…
The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have modified
the documentsheetbinding
The LiveTableViewSheet has been copied from app within minutes space into CdLSATEPrivat
space
Is there any groovy scripts that can not be used by
normal users?
If the Groovy script is in the sheet and the last sheet content author
has programming rights then a simple user shouldn't have any problem
viewing the page with that sheet applied. But, afaik, the message you
get is not related to programming rights.
If the document on which you get this message has a sheet you can try
to bind the document to itself, sheet='', and see if the message
remains.
Hope this helps,
Marius
Gerritjan
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
1:02 p.m.
New subject: [xwiki-users] Error -You are not allowed to view this document or perform this action.
Op 14 jun. 2012, om 13:58 heeft Marius Dumitru Florea het volgende geschreven:
Still the same error:
Content of page:
{{velocity}}
#set($originalMsg = $msg)
#set($msg = $services.dynamicMessageToolFactory.createDynamicMessageTool($msg, {
'cdlsateprivat.livetable.doc.date':
$msg.get('platform.appwithinminutes.liveTableEditorDocDateColumnName'),
'cdlsateprivat.livetable.doc.author':
$msg.get('platform.appwithinminutes.liveTableEditorDocAuthorColumnName'),
'cdlsateprivat.livetable._actions.edit':
$msg.get('platform.appwithinminutes.appLiveTableEditEntryActionName'),
'cdlsateprivat.livetable._actions.delete':
$msg.get('platform.appwithinminutes.appLiveTableDeleteEntryActionName'),
'cdlsateprivat.livetable._actions':
$msg.get('platform.appwithinminutes.liveTableEditorActionsColumnName')
}))
#set($columnsProperties = {
'squestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'emailQuestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'subject': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true, 'html':
false},
'cdlsPerson': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'status': {'type': 'list', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'doc.date': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true},
'doc.author': {'type': 'text', 'link': 'author',
'size': 10, 'filterable': true, 'sortable': true},
'_actions': {'html': true, 'sortable': false, 'actions':
['edit', 'delete']}
})
#set($options = {
'className': 'CdLSATEPrivat.CdLSATEPrivatClass',
'resultPage' : 'CdLSATEPrivat.LiveTableGenerator',
'translationPrefix': 'cdlsateprivat.livetable.',
'tagCloud': true,
'rowCount': 15,
'maxPages': 10,
'selectedColumn': 'doc.author',
'defaultOrder': 'asc'
})
#set($columns = ['squestioner', 'emailQuestioner', 'subject',
'cdlsPerson', 'status', 'doc.date', 'doc.author',
'_actions'])
#livetable('cdlsateprivat' $columns $columnsProperties $options)
#set($msg = $originalMsg)
{{/velocity}}
It is having three objects:
LiveTableClass 0: CdLSATEPrivat.CdLSATEPrivatClass
DocumentSheetBinding 0: CdLSATEPrivat.LiveTableEditSheet
XWikiRights 0: XWiki.User
On Wed, Jun 13, 2012 at 8:02 PM, Gerritjan Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
xwiki/bin/view/CdLSATEPrivat/WebHome
I've created an app with app within minutes.
A normal user gets the following error:
Error
You are not allowed to view this document or perform this action.
On which page and which action? URL? (you can strip the domain part).
What can cause this error, the space has the right rights set. (View, Comment and Edit;
no Delete or Admin)
No document level security. Other documents in the space can be seen…
The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have modified
the documentsheetbinding
The LiveTableViewSheet has been copied from app within minutes space into CdLSATEPrivat
space
Is there any groovy scripts that can not be used
by normal users?
If the Groovy script is in the sheet and the last sheet content author
has programming rights then a simple user shouldn't have any problem
viewing the page with that sheet applied. But, afaik, the message you
get is not related to programming rights.
If the document on which you get this message has a sheet you can try
to bind the document to itself, sheet='', and see if the message
remains.
Hope this helps,
Marius
Gerritjan
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
1:37 p.m.
New subject: [xwiki-users] Error -You are not allowed to view this document or perform this action.
On Thu, Jun 14, 2012 at 4:02 PM, Gerritjan Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
Op 14 jun. 2012, om 13:58 heeft Marius Dumitru Florea het volgende geschreven:
Still the same error:
Content of page:
{{velocity}}
#set($originalMsg = $msg)
#set($msg = $services.dynamicMessageToolFactory.createDynamicMessageTool($msg, {
'cdlsateprivat.livetable.doc.date':
$msg.get('platform.appwithinminutes.liveTableEditorDocDateColumnName'),
'cdlsateprivat.livetable.doc.author':
$msg.get('platform.appwithinminutes.liveTableEditorDocAuthorColumnName'),
'cdlsateprivat.livetable._actions.edit':
$msg.get('platform.appwithinminutes.appLiveTableEditEntryActionName'),
'cdlsateprivat.livetable._actions.delete':
$msg.get('platform.appwithinminutes.appLiveTableDeleteEntryActionName'),
'cdlsateprivat.livetable._actions':
$msg.get('platform.appwithinminutes.liveTableEditorActionsColumnName')
}))
#set($columnsProperties = {
'squestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'emailQuestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'subject': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true, 'html':
false},
'cdlsPerson': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'status': {'type': 'list', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'doc.date': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true},
'doc.author': {'type': 'text', 'link': 'author',
'size': 10, 'filterable': true, 'sortable': true},
'_actions': {'html': true, 'sortable': false, 'actions':
['edit', 'delete']}
})
#set($options = {
'className': 'CdLSATEPrivat.CdLSATEPrivatClass',
'resultPage' : 'CdLSATEPrivat.LiveTableGenerator',
'translationPrefix': 'cdlsateprivat.livetable.',
'tagCloud': true,
'rowCount': 15,
'maxPages': 10,
'selectedColumn': 'doc.author',
'defaultOrder': 'asc'
})
#set($columns = ['squestioner', 'emailQuestioner', 'subject',
'cdlsPerson', 'status', 'doc.date', 'doc.author',
'_actions'])
#livetable('cdlsateprivat' $columns $columnsProperties $options)
#set($msg = $originalMsg)
{{/velocity}}
It is having three objects:
LiveTableClass 0: CdLSATEPrivat.CdLSATEPrivatClass
DocumentSheetBinding 0: CdLSATEPrivat.LiveTableEditSheet
XWikiRights 0: XWiki.User
Then it's clearly a rights setting issue. I'd double check the rights
set on the app home page, and app space (WebPreferences page). I don't
have other ideas.
Hope this helps,
Marius
On Wed, Jun 13, 2012 at 8:02 PM, Gerritjan
Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
xwiki/bin/view/CdLSATEPrivat/WebHome
I've created an app with app within minutes.
A normal user gets the following error:
Error
You are not allowed to view this document or perform this action.
On which page and which action? URL? (you can strip the domain part).
What can cause this error, the space has the right rights set. (View, Comment and Edit;
no Delete or Admin)
No document level security. Other documents in the space can be seen…
The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have modified
the documentsheetbinding
The LiveTableViewSheet has been copied from app within minutes space into CdLSATEPrivat
space
Is there any groovy scripts that can not be used
by normal users?
If the Groovy script is in the sheet and the last sheet content author
has programming rights then a simple user shouldn't have any problem
viewing the page with that sheet applied. But, afaik, the message you
get is not related to programming rights.
If the document on which you get this message has a sheet you can try
to bind the document to itself, sheet='', and see if the message
remains.
Hope this helps,
Marius
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
Gerritjan
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
16 Jun
16 Jun
10:05 a.m.
New subject: [xwiki-users] Error -You are not allowed to view this document or perform this action.
Op 14 jun. 2012, om 15:37 heeft Marius Dumitru Florea het volgende geschreven:
On Thu, Jun 14, 2012 at 4:02 PM, Gerritjan Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
Hi Marius,
Thanks, indeed it was a rights setting! It works now.
But I have a different challenge now.
THe rights are now that USERS can add a document (because they have EDIT rights in the
space)
But if USER A will add a document USER B should not be able to CHANGE (is also EDIT) the
document. This is only allowed for the creator and users in GROUP MODERATOR.
I would like that the live table will show only EDIT ACTION Buttons for USERS that have
the right to do so; so only in rows that point to a document created by them selves? (for
moderators the current situation is OK (Edit buttons in all rows)
Does XWiki have a nice and easy configuration option for this? Or should i modify the
document creation script to add rights per document?
If so, is there a snippet that will do so?
Op 14 jun. 2012, om 13:58 heeft Marius Dumitru Florea het volgende geschreven:
Still the same error:
Content of page:
{{velocity}}
#set($originalMsg = $msg)
#set($msg = $services.dynamicMessageToolFactory.createDynamicMessageTool($msg, {
'cdlsateprivat.livetable.doc.date':
$msg.get('platform.appwithinminutes.liveTableEditorDocDateColumnName'),
'cdlsateprivat.livetable.doc.author':
$msg.get('platform.appwithinminutes.liveTableEditorDocAuthorColumnName'),
'cdlsateprivat.livetable._actions.edit':
$msg.get('platform.appwithinminutes.appLiveTableEditEntryActionName'),
'cdlsateprivat.livetable._actions.delete':
$msg.get('platform.appwithinminutes.appLiveTableDeleteEntryActionName'),
'cdlsateprivat.livetable._actions':
$msg.get('platform.appwithinminutes.liveTableEditorActionsColumnName')
}))
#set($columnsProperties = {
'squestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'emailQuestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'subject': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true, 'html':
false},
'cdlsPerson': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'status': {'type': 'list', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'doc.date': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true},
'doc.author': {'type': 'text', 'link': 'author',
'size': 10, 'filterable': true, 'sortable': true},
'_actions': {'html': true, 'sortable': false, 'actions':
['edit', 'delete']}
})
#set($options = {
'className': 'CdLSATEPrivat.CdLSATEPrivatClass',
'resultPage' : 'CdLSATEPrivat.LiveTableGenerator',
'translationPrefix': 'cdlsateprivat.livetable.',
'tagCloud': true,
'rowCount': 15,
'maxPages': 10,
'selectedColumn': 'doc.author',
'defaultOrder': 'asc'
})
#set($columns = ['squestioner', 'emailQuestioner', 'subject',
'cdlsPerson', 'status', 'doc.date', 'doc.author',
'_actions'])
#livetable('cdlsateprivat' $columns $columnsProperties $options)
#set($msg = $originalMsg)
{{/velocity}}
It is having three objects:
LiveTableClass 0: CdLSATEPrivat.CdLSATEPrivatClass
DocumentSheetBinding 0: CdLSATEPrivat.LiveTableEditSheet
XWikiRights 0: XWiki.User
Then it's clearly a rights setting issue. I'd double check the rights
set on the app home page, and app space (WebPreferences page). I don't
have other ideas. On Wed, Jun 13, 2012 at 8:02 PM, Gerritjan
Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
xwiki/bin/view/CdLSATEPrivat/WebHome
I've created an app with app within minutes.
A normal user gets the following error:
Error
You are not allowed to view this document or perform this action.
On which page and which action? URL? (you can strip the domain part).
What can cause this error, the space has the right rights set. (View, Comment and Edit;
no Delete or Admin)
No document level security. Other documents in the space can be seen…
The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have modified
the documentsheetbinding
The LiveTableViewSheet has been copied from app within minutes space into CdLSATEPrivat
space
Is there any groovy scripts that can not be used
by normal users?
If the Groovy script is in the sheet and the last sheet content author
has programming rights then a simple user shouldn't have any problem
viewing the page with that sheet applied. But, afaik, the message you
get is not related to programming rights.
If the document on which you get this message has a sheet you can try
to bind the document to itself, sheet='', and see if the message
remains.
Hope this helps,
Marius
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
Hope this helps,
Marius
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
Gerritjan
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
18 Jun
18 Jun
6:51 a.m.
New subject: [xwiki-users] Error -You are not allowed to view this document or perform this action.
On Sat, Jun 16, 2012 at 1:05 PM, Gerritjan Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
Op 14 jun. 2012, om 15:37 heeft Marius Dumitru Florea het volgende geschreven:
On Thu, Jun 14, 2012 at 4:02 PM, Gerritjan
Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
Hi Marius,
Thanks, indeed it was a rights setting! It works now.
But I have a different challenge now.
Op 14 jun. 2012, om 13:58 heeft Marius Dumitru Florea het volgende geschreven:
Then it's clearly a rights setting issue. I'd double check the rights
set on the app home page, and app space (WebPreferences page). I don't
have other ideas. On Wed, Jun 13, 2012 at 8:02 PM, Gerritjan
Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
> I've created an app with app within minutes.
>
> A normal user gets the following error:
> Error
> You are not allowed to view this document or perform this action.
On which page and which action? URL? (you can strip the domain part).
xwiki/bin/view/CdLSATEPrivat/WebHome
>
> What can cause this error, the space has the right rights set. (View, Comment and
Edit; no Delete or Admin)
> No document level security. Other documents in the space can be seen…
>
> The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have
modified the documentsheetbinding
> The LiveTableViewSheet has been copied from app within minutes space into
CdLSATEPrivat space
>
> Is there any groovy scripts that can not be used by normal users?
If the Groovy script is in the sheet and the last sheet content author
has programming rights then a simple user shouldn't have any problem
viewing the page with that sheet applied. But, afaik, the message you
get is not related to programming rights.
If the document on which you get this message has a sheet you can try
to bind the document to itself, sheet='', and see if the message
remains.
Still the same error:
Content of page:
{{velocity}}
#set($originalMsg = $msg)
#set($msg = $services.dynamicMessageToolFactory.createDynamicMessageTool($msg, {
'cdlsateprivat.livetable.doc.date':
$msg.get('platform.appwithinminutes.liveTableEditorDocDateColumnName'),
'cdlsateprivat.livetable.doc.author':
$msg.get('platform.appwithinminutes.liveTableEditorDocAuthorColumnName'),
'cdlsateprivat.livetable._actions.edit':
$msg.get('platform.appwithinminutes.appLiveTableEditEntryActionName'),
'cdlsateprivat.livetable._actions.delete':
$msg.get('platform.appwithinminutes.appLiveTableDeleteEntryActionName'),
'cdlsateprivat.livetable._actions':
$msg.get('platform.appwithinminutes.liveTableEditorActionsColumnName')
}))
#set($columnsProperties = {
'squestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'emailQuestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'subject': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true, 'html':
false},
'cdlsPerson': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'status': {'type': 'list', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'doc.date': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true},
'doc.author': {'type': 'text', 'link': 'author',
'size': 10, 'filterable': true, 'sortable': true},
'_actions': {'html': true, 'sortable': false, 'actions':
['edit', 'delete']}
})
#set($options = {
'className': 'CdLSATEPrivat.CdLSATEPrivatClass',
'resultPage' : 'CdLSATEPrivat.LiveTableGenerator',
'translationPrefix': 'cdlsateprivat.livetable.',
'tagCloud': true,
'rowCount': 15,
'maxPages': 10,
'selectedColumn': 'doc.author',
'defaultOrder': 'asc'
})
#set($columns = ['squestioner', 'emailQuestioner', 'subject',
'cdlsPerson', 'status', 'doc.date', 'doc.author',
'_actions'])
#livetable('cdlsateprivat' $columns $columnsProperties $options)
#set($msg = $originalMsg)
{{/velocity}}
It is having three objects:
LiveTableClass 0: CdLSATEPrivat.CdLSATEPrivatClass
DocumentSheetBinding 0: CdLSATEPrivat.LiveTableEditSheet
XWikiRights 0: XWiki.User THe rights are now that USERS can add a document
(because they have EDIT rights in the space)
But if USER A will add a document USER B should not be able to CHANGE (is also EDIT) the
document. This is only allowed for the creator and users in GROUP MODERATOR.
AWM doesn't execute any code when a new application entry is created.
It just builds the URL for the Inline Form edit mode and then the
document is created when you click save as any other plain document
would be saved. So if you want to add some rights objects when a new
application entry is created you have to write a Groovy listener. See
for instance
http://extensions.xwiki.org/xwiki/bin/view/Extension/Title+Post+Processing+…
.
I would like that the live table will show only EDIT
ACTION Buttons for USERS that have the right to do so; so only in rows that point to a
document created by them selves? (for moderators the current situation is OK (Edit buttons
in all rows)
AFAIK the edit icon is displayed only if the current user can edit the
document associated with that live table row. Are you saying that the
edit icon appears even if the current user doesn't have the edit
right?
Hope this helps,
Marius
Does XWiki have a nice and easy configuration option for this? Or should i modify the
document creation script to add rights per document?
If so, is there a snippet that will do so?
Hope this helps,
Marius
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
Hope this helps,
Marius
>
> Gerritjan
>
> _______________________________________________
> users mailing list
> users(a)xwiki.org
> http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
7:26 a.m.
New subject: [xwiki-users] Error -You are not allowed to view this document or perform this action.
Op 18 jun. 2012, om 08:51 heeft Marius Dumitru Florea het volgende geschreven:
On Sat, Jun 16, 2012 at 1:05 PM, Gerritjan Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
Thanks, This is good Information.
Would it not be possible to use code like developed by Vincent Massol in the sheet I use.
In livetableviewsheet that creates the button I've modified so that the new page is
created with a url-parameter
I could look at that parameter and if present understand it is a create-document event and
add the rights objects.
#if($HasEdit)
#set ($mydoc = $xwiki.getDocument("Sandbox.TestPage3"))
## Create a rights object and attach it to the Space.Page page
## Note that this method (getObject) will reuse an existing rights object, if one
exists;
## if you want to always create a new object, use
$mydoc.newObject("XWiki.XWikiRights")
## Note that XWiki.XWikiRights is used for page rights; if you want to change global
## (wiki or space) rights, use XWiki.XWikiGlobalRights
#set ($rightsObjectModerator = $mydoc.newObject("XWiki.XWikiRights"))
## Set the values of the fields
#set ($result = $rightsObjectModerator.set("groups",
"XWiki.XWikiAdminGroup,XWiki.Moderator,XWiki.GlobalModerator"))
#set ($result = $rightsObjectModerator.set("levels",
"view,comment,edit"))
#set ($result = $rightsObjectModerator.set("users",
"XWiki.GerritjanKoekkoek"))
#set ($result = $rightsObjectModerator.set("allow", 1))
#set ($rightsObjectUser = $mydoc.newObject("XWiki.XWikiRights"))
## Set the values of the fields
#set ($result = $rightsObjectUser.set("groups", "XWiki.Users"))
#set ($result = $rightsObjectUser.set("levels", "view"))
#set ($result = $rightsObjectUser.set("allow", 1))
## Save the modifications
$mydoc.save()
#end
The issue I see is that the rights objects are not explicitly named, but implicit, making
maintenance a very manual process
Is it possible to have a script that will evaluate the rights for each document? (a kind
of matrix with four groups as header)
Op 14 jun. 2012, om 15:37 heeft Marius Dumitru Florea het volgende geschreven:
On Thu, Jun 14, 2012 at 4:02 PM, Gerritjan
Koekkoek
<gerritjankoekkoek(a)gmail.com> wrote:
Hi Marius,
Thanks, indeed it was a rights setting! It works now.
But I have a different challenge now.
Op 14 jun. 2012, om 13:58 heeft Marius Dumitru Florea het volgende geschreven:
> On Wed, Jun 13, 2012 at 8:02 PM, Gerritjan Koekkoek
> <gerritjankoekkoek(a)gmail.com> wrote:
>> I've created an app with app within minutes.
>>
>> A normal user gets the following error:
>> Error
>> You are not allowed to view this document or perform this action.
>
> On which page and which action? URL? (you can strip the domain part).
xwiki/bin/view/CdLSATEPrivat/WebHome
>
>>
>> What can cause this error, the space has the right rights set. (View, Comment and
Edit; no Delete or Admin)
>> No document level security. Other documents in the space can be seen…
>>
>> The page CdLSATEPrivat/WebHome is generated by app within minutes, but I have
modified the documentsheetbinding
>> The LiveTableViewSheet has been copied from app within minutes space into
CdLSATEPrivat space
>>
>
>> Is there any groovy scripts that can not be used by normal users?
>
> If the Groovy script is in the sheet and the last sheet content author
> has programming rights then a simple user shouldn't have any problem
> viewing the page with that sheet applied. But, afaik, the message you
> get is not related to programming rights.
>
> If the document on which you get this message has a sheet you can try
> to bind the document to itself, sheet='', and see if the message
> remains.
Still the same error:
Content of page:
{{velocity}}
#set($originalMsg = $msg)
#set($msg = $services.dynamicMessageToolFactory.createDynamicMessageTool($msg, {
'cdlsateprivat.livetable.doc.date':
$msg.get('platform.appwithinminutes.liveTableEditorDocDateColumnName'),
'cdlsateprivat.livetable.doc.author':
$msg.get('platform.appwithinminutes.liveTableEditorDocAuthorColumnName'),
'cdlsateprivat.livetable._actions.edit':
$msg.get('platform.appwithinminutes.appLiveTableEditEntryActionName'),
'cdlsateprivat.livetable._actions.delete':
$msg.get('platform.appwithinminutes.appLiveTableDeleteEntryActionName'),
'cdlsateprivat.livetable._actions':
$msg.get('platform.appwithinminutes.liveTableEditorActionsColumnName')
}))
#set($columnsProperties = {
'squestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'emailQuestioner': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'subject': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true, 'html':
false},
'cdlsPerson': {'type': 'text', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'status': {'type': 'list', 'size': 10,
'filterable': true, 'sortable': true, 'html': false},
'doc.date': {'type': 'text', 'link': 'view',
'size': 10, 'filterable': true, 'sortable': true},
'doc.author': {'type': 'text', 'link': 'author',
'size': 10, 'filterable': true, 'sortable': true},
'_actions': {'html': true, 'sortable': false, 'actions':
['edit', 'delete']}
})
#set($options = {
'className': 'CdLSATEPrivat.CdLSATEPrivatClass',
'resultPage' : 'CdLSATEPrivat.LiveTableGenerator',
'translationPrefix': 'cdlsateprivat.livetable.',
'tagCloud': true,
'rowCount': 15,
'maxPages': 10,
'selectedColumn': 'doc.author',
'defaultOrder': 'asc'
})
#set($columns = ['squestioner', 'emailQuestioner', 'subject',
'cdlsPerson', 'status', 'doc.date', 'doc.author',
'_actions'])
#livetable('cdlsateprivat' $columns $columnsProperties $options)
#set($msg = $originalMsg)
{{/velocity}}
It is having three objects:
LiveTableClass 0: CdLSATEPrivat.CdLSATEPrivatClass
DocumentSheetBinding 0: CdLSATEPrivat.LiveTableEditSheet
XWikiRights 0: XWiki.User
Then it's clearly a rights setting issue. I'd double check the rights
set on the app home page, and app space (WebPreferences page). I don't
have other ideas. THe rights are now that USERS can add a document
(because they have EDIT rights in the space)
But if USER A will add a document USER B should not be able to CHANGE (is also EDIT) the
document. This is only allowed for the creator and users in GROUP MODERATOR.
AWM doesn't execute any code when a new application entry is created.
It just builds the URL for the Inline Form edit mode and then the
document is created when you click save as any other plain document
would be saved. So if you want to add some rights objects when a new
application entry is created you have to write a Groovy listener. See
for instance
http://extensions.xwiki.org/xwiki/bin/view/Extension/Title+Post+Processing+…
.
You are right, the live table does this automatically. So this is not a
problem!
I would like that the live table will show only
EDIT ACTION Buttons for USERS that have the right to do so; so only in rows that point to
a document created by them selves? (for moderators the current situation is OK (Edit
buttons in all rows)
AFAIK the edit icon is displayed only if the current user can edit the
document associated with that live table row. Are you saying that the
edit icon appears even if the current user doesn't have the edit
right?
Hope this helps,
Marius
Does XWiki have a nice and easy configuration option for this? Or should i modify the
document creation script to add rights per document?
If so, is there a snippet that will do so?
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
Hope this helps,
Marius
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
>
> Hope this helps,
> Marius
>
>>
>> Gerritjan
>>
>> _______________________________________________
>> users mailing list
>> users(a)xwiki.org
>> http://lists.xwiki.org/mailman/listinfo/users
> _______________________________________________
> users mailing list
> users(a)xwiki.org
> http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
_______________________________________________
users mailing list
users(a)xwiki.org
http://lists.xwiki.org/mailman/listinfo/users
4485
days inactive
4490
days old
6 comments
2 participants
participants (2)
-
Gerritjan Koekkoek -
Marius Dumitru Florea