Workflow security issue
from
"Eric Thomas"
on Mar 05, 2007 03:59 PM
Hi all. I'm trying to use remember with the member_approval_workflow and
feel like it is really close to working. No new AT types here, just the
standard membrane/remember types. Basically, I'm hoping to allow Anonymous
users to register themselves as new members, but have the workflow put the
new member into a pending state which must be approved by a reviewer.
I've got the workflow transtions to where they look correct, but have a
permissions issue. Currently, a user can choose 'Join' and enter their
Username (tester2), Full name, and E-mail and select 'Register'. However,
they are then prompted to Login.
The event.log snippet is below, and clearly indicates a permissions issue.
However, I'm not sure what permission is required or whether it should be
set in one of the states of member_approval_workflow or on one of the portal
folders used in Member creation. So, I'm at the point of aimlessly
modifying different permissions. Thanks for any help...
Regards,
Eric
------
2007-03-05T20:43:27 DEBUG Archetypes
^[[00m^[[01;32mProducts/Archetypes/Extensi\
bleMetadata.py[282]:allowDiscussion
^[[00mCatched Unauthorized on discussiontool.overrideDiscussionFor
(portal_membe\
rdata/portal_factory/Member/member.2007-03-05.6171660767)
------
2007-03-05T20:43:27 DEBUG Archetypes Catched Unauthorized on
discussiontool.ove\
rrideDiscussionFor(portal_memberdata/tester2)
------
2007-03-05T20:43:28 INFO Archetypes
^[[00m^[[01;32mProducts/Archetypes/Field.py[500]:writeable
^[[00mTried to update Member:title but field is not writeable.
------
2007-03-05T20:43:28 INFO Archetypes
^[[00m^[[01;32mProducts/Archetypes/Field.py[512]:writeable
^[[00mUser None tried to update Member:roles but doesn't have enough
permissions.
------
2007-03-05T20:43:28 INFO Archetypes User None tried to update Member:groups
but doesn't have enough permissions.
------
2007-03-05T20:43:28 INFO Archetypes User None tried to update Member:domains
but doesn't have enough permissions.
------
2007-03-05T20:43:28 INFO Archetypes
^[[00m^[[01;32mProducts/Archetypes/Field.py[500]:writeable
^[[00mTried to update Member:review_state but field is not writeable.
------
2007-03-05T20:43:28 INFO Archetypes Tried to update Member:listed but field
is not writeable.
------
2007-03-05T20:43:28 BLATHER Zope Security Policy Unauthorized: Your user
account does not have the required permission. Access to 'hasUser' of
(Member at /carechurch/portal_memberdata/tester2) denied. Your user account,
Anonymous User, exists at /acl_users. Access requires one of the following
roles: ['Manager', 'Owner']. Your roles in this context are ['Anonymous'].
------
2007-03-05T20:43:28 BLATHER Zope Security Policy Unauthorized: Your user
account does not have the required permission. Access to '' of (PloneSite
at /carechurch) denied. Your user account, Anonymous User, exists at
/acl_users. Access requires one of the following roles: ['Manager',
'Member', 'Reviewer']. Your roles in this context are ['Anonymous'].
------
2007-03-05T20:43:28 BLATHER Zope Security Policy Unauthorized: Your user
account does not have the required permission. Access to 'aq_explicit' of
(MemberDataContainer at /carechurch/portal_memberdata) denied. Your user
account, Anonymous User, exists at /acl_users. Access requires one of the
following roles: ['Manager', 'Member', 'Reviewer']. Your roles in this
context are ['Anonymous'].
------
text.html (text/html) 3.9 kB