Issue In Role Permissioning for Pages

掲示板

14年前に Ajay Saharan によって更新されました。

Issue In Role Permissioning for Pages

New Member 投稿: 18 参加年月日: 09/02/25 最新の投稿

Hi,
We create some page and assign some regular role permission on those pages. And remove all other permissions like community members or users. And when your is getting inside the portal if don't have that role for which we assign it for that page, not able to see that page in drop down. Till that is fine. But when he got the direct URL of that authorized page and put in the browser request, he'll able to go on that page even he don't have the same role which is assign for that page.

Is we are doing something wrong? we are not using any group permission we are using only regular roles for page permission.

Is there any method in API to check with USER ID an request URL values that this user having permissions for that Page or not. We wants to check that in some filter class so that we can restrict that user if he don't have permission. We tried to use PermissionServiceUtil.getService().hasUserPermission(user_Id, ActionKeys.VIEW, Resourceid);.
But this will only check that this user having permission on this or not. But we gave permission through the Roles only, that's why it's return false even if that user having the same role.
-- Ajay

11年前に Nikhil Nishchal によって更新されました。

RE: Issue In Role Permissioning for Pages

Regular Member 投稿: 177 参加年月日: 12/06/22 最新の投稿

You can define permissions on role.
http://www.liferay.com/community/forums/-/message_boards/message/23871783
For this requirement you can use private page concept.
So you added role to user, but may be this permission is not added in that role.
You may check the permission on role from control panel.