• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: Rule to access security
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Rule to access security


  • Subject: Re: Rule to access security
  • From: Ramsey Gurley <email@hidden>
  • Date: Mon, 23 Jan 2012 09:37:42 -0700

And if that doesn't work, enable your rule loggers for isEntityEditable.  Just looking at the rule, that looks to me like it *should* work with a caching assignment too.

Ramsey

On Jan 23, 2012, at 8:46 AM, David LeBer wrote:

> Ted,
>
> You probably want try ERDDelayedBooleanAssignment so that the rule is evaluated every time.
>
> D
>
> --
> David LeBer
> Codeferous Software
>
> On 2012-01-23, at 10:29 AM, Theodore Petrosky wrote:
>
>>   100 : (pageConfiguration = 'ListPerson' and session.user.security.canEditPerson = 'true') => isEntityEditable = true [com.webobjects.directtoweb.BooleanAssignment],
>>
>>
>> So I have this rule to access the security of my user. This must be wrong, because if I login as user1 and user1 has permission  canEditPerson = true, when user2 logs in (and user2 canEditPeron = false) then user2 can edit the person EO. it is as if whoever was first wins and my app remembers.
>>
>> I even tried adding:
>>   100 : (pageConfiguration = 'ListPerson' and session.user.security.canEditPerson = 'false') => isEntityEditable = false [com.webobjects.directtoweb.BooleanAssignment],
>>
>> What am I doing wrong?
>>
>> Ted
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Webobjects-dev mailing list      (email@hidden)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>>
>
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Webobjects-dev mailing list      (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden


 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden


  • Follow-Ups:
    • Re: Rule to access security
      • From: Theodore Petrosky <email@hidden>
References: 
 >Rule to access security (From: Theodore Petrosky <email@hidden>)
 >Re: Rule to access security (From: David LeBer <email@hidden>)

  • Prev by Date: Re: What it means
  • Next by Date: Re: Dynamically append CSS class in D2W
  • Previous by thread: Re: Rule to access security
  • Next by thread: Re: Rule to access security
  • Index(es):
    • Date
    • Thread