A Plone utility that make possible for non-Manager users to manage some (specific) groups
Project description
Introduction
============
Have you ever feel the need to give to normal (AKA: not Manager/Site Administrator ) Plone member the power to
manage a group?
Right now in Plone you can make this possible playin with the **Manage users** and **Manage Groups**.
Even playing with those permissions is impossible is to limit the group on which a member (or group of members)
can manage.
This products make something very dangerous: with a minimal configuration, a member of the Plone portal
(or all members in a group) will be able to manage the users of a group overriding the basic portal security.
You only need to go to the *portal_properties* tool of you portal and modifiy the new
**simple_groups_management_properties**.
In the *sgm_data* section you need to insert a set of strings like
::
id1|group_id1
id2|group_id2
...
where *id1*, *id2* can be user or group ids. This mean that the member (or group) id1 will be able to act on the
group_id1 members.
You can also insert a list of groups ids that will be never handled by this product in the
**sgm_never_managed_groups** section.
The utility also react to the **Add portal members** permission. If the current user has this permission
you will be able to add new portal members (so no security break for this).
When an user is added to a group or removed, an event will be raised.
Be aware!
---------
This products override all normal Plone permissions noted above! This can create **security black-holes** in
your portal!
.. figure:: http://keul.it/images/Black_Hole_Milkyway.jpg
:scale: 50
The access to the new user/group management form is protected by the **Use Simple Groups Management**
permission (commonly given to all site Members).
Similar product
---------------
Maybe is a good idea to check also `collective.groupdelegation`__
__ http://pypi.python.org/pypi/collective.groupdelegation
TODO
----
* Don't force the Manager to go in ZMI, but handle configuration from Plone UI.
* Some portalMessage doesn't work correctly.
Credits
-------
Special thanks to Albert Pallas for beeing the locales-man.
Changelog
=========
0.3.1 (2011/07/12)
------------------
* fixed bug in group listing [micecchi]
0.3.0 (2011/07/10)
------------------
* No more Plone 2.5 support
* Plone UI updated to Plone 3 world [micecchi]
* Moved tool-link from users preferences to plone_control_panel [micecchi]
* Created a link in site_actions to access the management view [micecchi]
* Created a custom event raised when an user is assigned/deleted to a group
when using this product [micecchi]
* Changed the way of listing users, to support ldap and many users [micecchi]
* Improved Plone4 compatibility [micecchi]
0.2.0
-----
* Albert Pallas provided internationalization support
* Again Albert added catalan, spanish and french translations
* Added italian translation
0.1.0
-----
* Initial release
============
Have you ever feel the need to give to normal (AKA: not Manager/Site Administrator ) Plone member the power to
manage a group?
Right now in Plone you can make this possible playin with the **Manage users** and **Manage Groups**.
Even playing with those permissions is impossible is to limit the group on which a member (or group of members)
can manage.
This products make something very dangerous: with a minimal configuration, a member of the Plone portal
(or all members in a group) will be able to manage the users of a group overriding the basic portal security.
You only need to go to the *portal_properties* tool of you portal and modifiy the new
**simple_groups_management_properties**.
In the *sgm_data* section you need to insert a set of strings like
::
id1|group_id1
id2|group_id2
...
where *id1*, *id2* can be user or group ids. This mean that the member (or group) id1 will be able to act on the
group_id1 members.
You can also insert a list of groups ids that will be never handled by this product in the
**sgm_never_managed_groups** section.
The utility also react to the **Add portal members** permission. If the current user has this permission
you will be able to add new portal members (so no security break for this).
When an user is added to a group or removed, an event will be raised.
Be aware!
---------
This products override all normal Plone permissions noted above! This can create **security black-holes** in
your portal!
.. figure:: http://keul.it/images/Black_Hole_Milkyway.jpg
:scale: 50
The access to the new user/group management form is protected by the **Use Simple Groups Management**
permission (commonly given to all site Members).
Similar product
---------------
Maybe is a good idea to check also `collective.groupdelegation`__
__ http://pypi.python.org/pypi/collective.groupdelegation
TODO
----
* Don't force the Manager to go in ZMI, but handle configuration from Plone UI.
* Some portalMessage doesn't work correctly.
Credits
-------
Special thanks to Albert Pallas for beeing the locales-man.
Changelog
=========
0.3.1 (2011/07/12)
------------------
* fixed bug in group listing [micecchi]
0.3.0 (2011/07/10)
------------------
* No more Plone 2.5 support
* Plone UI updated to Plone 3 world [micecchi]
* Moved tool-link from users preferences to plone_control_panel [micecchi]
* Created a link in site_actions to access the management view [micecchi]
* Created a custom event raised when an user is assigned/deleted to a group
when using this product [micecchi]
* Changed the way of listing users, to support ldap and many users [micecchi]
* Improved Plone4 compatibility [micecchi]
0.2.0
-----
* Albert Pallas provided internationalization support
* Again Albert added catalan, spanish and french translations
* Added italian translation
0.1.0
-----
* Initial release
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
File details
Details for the file Products.SimpleGroupsManagement-0.3.1.tar.gz
.
File metadata
- Download URL: Products.SimpleGroupsManagement-0.3.1.tar.gz
- Upload date:
- Size: 64.7 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | 18ed1111a7865dbc9506952890edf147f219989ea9a3b963a8ffb95739a0f9da |
|
MD5 | 134526e6c65b41b43c0ce32f499886a5 |
|
BLAKE2b-256 | 36407b3b5389847cd0defded7bb04914db7b5b5c7600a5bf39426a31d5a2df0e |