Developer forum

Forum » Development » Frontend paragraph permissions as opposed to page permissions

Frontend paragraph permissions as opposed to page permissions

E-mail notifications

Reply
Posted on 30/12/2010 10:51:31
On login I assign the user to extra Groups, by adding the AccessuserID to the "DW_extranet_groups" session.  (PageView.User.Groups)
 
This works fine on Page permissions, but not on paragraph permissions.
 
My investigations show, that the two permissions handlers don’t use the same method for permission validation. The Paragraph permissions validations retrieves the user from the AccessUser database table, while the  page permissions validations gets it from the PageView.User.
 
Is there a reason for this? I would prefer getting the user from PageView.User in both cases.

DW version: 19.1.2.7

Replies

 
Nicolai Høeg Pedersen
Posted on 19/01/2011 14:26:58
Reply
Paragraph permissions is a feature introduced after the new user management. User management has a different store for permissions. Because of backwards compatibility on group permissions on page your old code still works after upgrading to user management - or if not using user management at all.
 
Posted on 19/01/2011 14:47:50
Reply
We often need to add users to groups dynamically based on information from other systems.

Sometimes a user only exists in the current session - not stored in AccessUser - like when we let users log in with NemID or similar SSO services.

It is a huge problem for us if DW requires that the user and all group relations are stored in the AccessUser table in order to get permissions to work as intended.

Is there a workaround for this?

/Morten
 
Nicolai Høeg Pedersen
Posted on 20/01/2011 08:54:01
Reply
I'll have someone look at a possible workaround with example.
 
Jeppe Eriksson Agger Dynamicweb Employee
Jeppe Eriksson Agger
Posted on 21/01/2011 12:02:51
Reply
It's not currently possible to dynamically set permissions for paragraphs. The reason for this is, that you don't have access to the ParagraphClass object at the time of render, and the permissions are set on this object. Unfortunately the notification Dynamicweb.Notifications.Standard.Paragraph.OnBeforeRender is invoked after permissions are applied.

However I have added this request to our BackLog.

- Jeppe
 
Posted on 25/01/2011 09:08:17
Reply
Hi Jeppe,
 
The issues is not adding permissions to the paragraph dynamically. The permission is added to the paragraph in DW backend. The issue is adding Usermanagement groups to the user dynamically.
 
Posted on 04/04/2011 10:30:05
Reply
Is there any news regarding a workaround or fix for this issue?

/Christian
 
Nicolai Høeg Pedersen
Posted on 07/04/2011 09:17:17
Reply
No - still in the backlog.
 
Christian Fisker
Posted on 14/05/2013 15:49:09
Reply

Well, the issue popped up again an this time there IS a solution (at least for DW8) and there might be information about this elsewhere.. I have not looked for it.

 

How to dynamically/programatically add a user to a usergroup after login:

 

Dynamicweb.Modules.UserManagement.User.GetCurrentUser().AddToGroup(21492);

 

/Christian

 

 
Nicolai Høeg Pedersen
Posted on 14/05/2013 21:26:26
Reply

Hi Christian

 

Thanks for sharing!

 

BR Nicolai

 

You must be logged in to post in the forum