Re: Rule to access security
Re: Rule to access security
- Subject: Re: Rule to access security
- From: David LeBer <email@hidden>
- Date: Mon, 23 Jan 2012 10:46:54 -0500
Ted,
You probably want try ERDDelayedBooleanAssignment so that the rule is evaluated every time.
D
--
David LeBer
Codeferous Software
On 2012-01-23, at 10:29 AM, Theodore Petrosky wrote:
> 100 : (pageConfiguration = 'ListPerson' and session.user.security.canEditPerson = 'true') => isEntityEditable = true [com.webobjects.directtoweb.BooleanAssignment],
>
>
> So I have this rule to access the security of my user. This must be wrong, because if I login as user1 and user1 has permission canEditPerson = true, when user2 logs in (and user2 canEditPeron = false) then user2 can edit the person EO. it is as if whoever was first wins and my app remembers.
>
> I even tried adding:
> 100 : (pageConfiguration = 'ListPerson' and session.user.security.canEditPerson = 'false') => isEntityEditable = false [com.webobjects.directtoweb.BooleanAssignment],
>
> What am I doing wrong?
>
> Ted
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Webobjects-dev mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden