HTML Logo by World Wide Web Consortium (www.w3.org). Click to learn more about our commitment to accessibility and standards.

Moving forward with Composr

ocPortal has been relaunched as Composr CMS, which is now in beta. ocPortal 9 will be superseded by Composr 10.

Head over to compo.sr for our new site, and to our migration roadmap. Existing ocPortal member accounts have been mirrored.


Restricting children galleries from adopting new parents

Login / Search

 [ Join | More ]
 Add topic 
Posted
Rating:
#58601 (In Topic #12778)
Avatar

Community saint

I need to keep members from changing thier parent gallery to some other gallery

I have been working on 'permissions' for my site. I found this confusing at first but as I 'play' around with the settings I think I understand some of the principles. Still, I have encountered a bump I haven't figured out how to get over.

My site has four 'levels' of Galleries.

The first gallery is for anyone to post images in flow mode, everyone has access to this.

Then there are two more galleries that are restricted galleries. Here artists may submit images for consideration to be displayed in one of these galleries. Only admin has access to these (until I can figure out how to give access to only admin and the actual artist who is allowed to display their work there). I really want to lock, generally everyone out of these two galleries.

The remaining gallery is where the personal galleries of members are. Here members can post most anything consistent to the general subject of the website, dinosaurs and prehistoric creatures.

My quandary is how to keep the individual members personal galleries to stay put under the 'Personal Gallery" parent gallery. I have it now so that the member who created the gallery can add/edit their gallery but I am finding that a member can relocate their gallery, at will, to be under any of the other galleries they want. I need to be able to restrict children galleries from adopting new parent galleries.

I haven't found the 'switch' to prevent them from escaping from the "Personal Gallery". I'm sure this can not be too hard to do but I am a bit stuck. Appreciate any help…


Art and Imagination
of David L Friend

http://davidlfriend.com

  My Art Gallery
powered by ocPortal
Back to the top
 
Posted
Rating:
#58609
Avatar

Hi,

There's no way to do it but maybe just deny them access to edit the galleries? Probably there isn't much need for them to do it, they don't need this edit access to add/edit images/videos within the gallery. I'd suggest offering to make description changes yourself if that's what they need but I suppose it depends on how many there are as to whether that's workable.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#58631
Avatar

Community saint

OK so I am OK with this Chris. I can understand that I just have to remove the feature for members to self control thier own gallery so I can more fully secure the more important galleries and keep them from being messed with. I can live with that for this site.

I set out this morning to set member and zone permissions with that in mind. I'm doing fine thinking I have addressed the Gallery access issue and am off to the next …and I'm testing the PERSONAL ZONE permissions. The BLOG feature seems like a good thing for a member to have access to and use but I find that a member cannot submit a blog without ticking the "Submit other users' high-impact (high visibility) content" permission - but this also allows those members to be able to access the MANAGE GALLERIES/ADD GALLERY function and this even can happen with the galleries set to READ-ONLY ACCESS. I find myself back to where I was on the previous post.

So I think the personal blog feature for this website will have to be disabled for most members. I'm still working my way through all this and will probably find more like this.

I don't know yet but I'll bet that the news feature is akin to the blog feature and it maybe also needs 'high visibility" content permission also?


Art and Imagination
of David L Friend

http://davidlfriend.com

  My Art Gallery
powered by ocPortal
Back to the top
 
Posted
Rating:
#58647
Avatar

Hi,

A few issues/misconceptions here…

The BLOG feature seems like a good thing for a member to have access to and use but I find that a member cannot submit a blog without ticking the "Submit other users' high-impact (high visibility) content" permission

There is a bug here. We have misnamed the permission by mistake recently, it should just be named "Submit high-impact (high visibility) content". However, read on…

but this also allows those members to be able to access the MANAGE GALLERIES/ADD GALLERY function

This won't be an issue. Just use the Permission Tree Editor to set the permissions you need on the news module, rather than relying on setting them globally.

even can happen with the galleries set to READ-ONLY ACCESS

This should not be the case, and I have just tested and it doesn't seem to be. Perhaps the confusion here rests in how personal galleries work; the permissions of one gallery do not carry on to those beneath it, even for personal galleries created automatically under another gallery.
Besides - I don't believe the galleries don't use the 'high' permissions.


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
Posted
Rating:
#58665
Avatar

Community saint

When I untick "Submit other users' high-impact (high visibility) content" I get this error also I did not see under SECURITY/SPECIFIC PERMISSIONS:SUBMISSION a line to tic/un-tick which says "Submit high-impact (high visibility) content" but I did find the "Add high-impact (high visibility) categories" line. Anyway the "Add high-impact (high visibility) categories", ticked or un-ticked does not seem to effect the outcome.

From my testing it it has to have the "Submit other users' high-impact (high visibility) content" or the blog feature will not allow you to "ADD NEWS"

The "submit_highrange_content" in the stack trace must be refering to a lack of "Submit other users' high-impact (high visibility) content" permission.

Chris Graham said

There is a bug here. We have misnamed the permission by mistake recently, it should just be named "Submit high-impact (high visibility) content".
Maybe what you were telling me was "Submit other users..." really doesn't mean "others" and it should be ticked and this doesn't allow "Others" to be submitted to anyway, so don't worry?

I haven't had time to try out the "Permission Tree Editor" instructions as of yet to see if it helps.

BTW "Chip" is a test member.

An error has occurred

"Chip" does not have the specific-permission, 'Submit other users' high-impact (high visibility) content'. (version: 4.3.1, PHP version: 5.2.11, URL: /~prehisto/cms/index.php?page=cms_news&keep_fatalistic=1&type=_ad&uploading=1&keep_su=Chip)

Here is the stack trace:

Below is a stack trace revealing the state the software was in when the error occurred. If this represents a bug in the unmodified software, you may want to check ocPortal website for a fix, and if there isn't one, report this as a bug. Please note that merely posting a stack trace is not sufficient for us to solve your problem; the stack trace is just an aid that presents us with additional information. We still need to know the error message, what you tried to do, how you tried to do it, version numbers, and any other appropriate information.
We apologise for this problem and if it's a bug we hope you will work with us so that we can fix it for you promptly.

File'/home/prehisto/public_html/sources/failure.php'
Line'557'
Function'get_html_trace'
Args

File'/home/prehisto/public_html/sources/global2.php'
Line'862'
Function'_fatal_exit'
Argsobject


File'/home/prehisto/public_html/sources/failure.php'
Line'170'
Function'fatal_exit'
Argsobject


File'/home/prehisto/public_html/sources/global2.php'
Line'822'
Function'_generic_exit'
Argsobject

'WARN_SCREEN'


File'/home/prehisto/public_html/sources/failure.php'
Line'840'
Function'warn_exit'
Argsobject


File'/home/prehisto/public_html/sources/permissions.php'
Line'86'
Function'_access_denied'
Args'SPECIFIC_PERMISSION'

'submit_highrange_content'

false


File'/home/prehisto/public_html/sources/permissions.php'
Line'529'
Function'access_denied'
Args'SPECIFIC_PERMISSION'

'submit_highrange_content'


File'/home/prehisto/public_html/sources/aed_module.php'
Line'509'
Function'check_submit_permission'
Args'high'

array ( 0 => 'news', 1 => 'personal', 2 => NULL, 3 => '', )


File'/home/prehisto/public_html/sources/aed_module.php'
Line'182'
Function'_ad'
Class'standard_aed_module'
Type'->'
ObjectModule_cms_news::__set_state(array( 'lang_type' => 'NEWS', 'select_name' => 'TITLE', 'code_require' => 'news', 'permissions_require' => 'high', 'permissions_cat_require' => 'news', 'permissions_cat_name' => 'main_news_category', 'user_facing' => true, 'seo_type' => 'news', 'award_type' => 'news', 'possibly_some_kind_of_upload' => true, 'upload' => 'image', 'menu_label' => 'NEWS', 'donext_type' => NULL, 'module_type' => 'news', 'redirect_type' => NULL, 'javascript_require' => NULL, 'skip_validation' => false, 'default_type' => 'misc', 'author' => 'Chris Graham', 'organisation' => 'ocProducts', 'send_validation_request' => true, 'check_validation' => true, 'archive_entry_point' => NULL, 'archive_label' => NULL, 'view_entry_point' => NULL, 'protect_first' => 0, 'permission_page' => NULL, 'permission_module' => NULL, 'permissions_cat_require_b' => NULL, 'permissions_cat_name_b' => NULL, 'add_text' => '', 'edit_text' => '', 'extra_donext_entries' => NULL, 'extra_donext_categories' => NULL, 'extra_donext_whatever' => NULL, 'extra_donext_whatever_title' => NULL, 'do_next_editing_categories' => false, 'special_edit_frontend' => false, 'cat_aed_module' => Module_cms_news_cat::__set_state(array( 'lang_type' => 'NEWS_CATEGORY', 'select_name' => 'TITLE', 'permissions_require' => 'cat_high', 'permission_module' => 'news', 'javascript' => 'standardAlternateFields(\'file\',\'theme_img_code*\');', 'menu_label' => 'NEWS', 'module_type' => NULL, 'redirect_type' => NULL, 'code_require' => NULL, 'javascript_require' => NULL, 'skip_validation' => false, 'default_type' => NULL, 'author' => 'Chris Graham', 'organisation' => 'ocProducts', 'user_facing' => false, 'send_validation_request' => true, 'check_validation' => true, 'archive_entry_point' => NULL, 'archive_label' => NULL, 'view_entry_point' => NULL, 'protect_first' => 0, 'permission_page' => NULL, 'permissions_cat_require' => NULL, 'permissions_cat_name' => NULL, 'permissions_cat_require_b' => NULL, 'permissions_cat_name_b' => NULL, 'add_text' => '', 'edit_text' => '', 'extra_donext_entries' => NULL, 'extra_donext_categories' => NULL, 'extra_donext_whatever' => NULL, 'extra_donext_whatever_title' => NULL, 'do_next_editing_categories' => false, 'special_edit_frontend' => false, 'upload' => NULL, 'possibly_some_kind_of_upload' => false, 'cat_aed_module' => NULL, 'alt_aed_module' => NULL, 'seo_type' => NULL, 'award_type' => NULL, 'posting_form_title' => NULL, 'posting_form_text' => '', 'posting_form_text_parsed' => NULL, 'type_code' => 'd', 'catalogue' => false, 'non_integer_id' => false, 'output_of_action_is_confirmation' => false, 'second_stage_preview' => false, 'add_submit_name' => NULL, 'edit_submit_name' => NULL, 'do_preview' => true, 'add_one_label' => NULL, 'add_one_cat_label' => NULL, 'edit_this_label' => NULL, 'edit_one_label' => NULL, 'edit_this_cat_label' => NULL, 'edit_one_cat_label' => NULL, 'do_next_description' => NULL, 'appended_actions_already' => false, 'select_name_description' => NULL, 'care_please' => true, 'new_id' => NULL, 'no_blank_ids' => true, 'table_prefix' => '', 'array_key' => 'id', 'title_is_multi_lang' => true, 'orderer' => NULL, 'table' => NULL, )), 'alt_aed_module' => NULL, 'posting_form_title' => ocp_tempcode::__set_state(array( 'code_to_preexecute' => 'if (!isset($TPL_FUNCS[\'do_runtime_1267773022ea278494c\'])) $TPL_FUNCS[\'do_runtime_1267773022ea278494c\']="extract(\$parameters,EXTR_PREFIX_ALL,\'bound\'); echo evaluate_conventional_variable(\$current_lang,array(),2,\"NEWS_ARTICLE\",\$parameters);"; ', 'seq_parts' => array ( 0 => array ( 0 => 'do_runtime_1267773022ea278494c', 1 => array ( ), 2 => 2, 3 => 'NEWS_ARTICLE', 4 => '', ), ), 'preprocessable_bits' => array ( ), 'last_attach' => NULL, 'pure_lang' => true, 'codename' => ':container', 'cached_output' => NULL, )), 'posting_form_text' => '', 'posting_form_text_parsed' => NULL, 'javascript' => NULL, 'type_code' => 'd', 'catalogue' => false, 'non_integer_id' => false, 'output_of_action_is_confirmation' => false, 'second_stage_preview' => false, 'add_submit_name' => NULL, 'edit_submit_name' => NULL, 'do_preview' => true, 'add_one_label' => NULL, 'add_one_cat_label' => NULL, 'edit_this_label' => NULL, 'edit_one_label' => NULL, 'edit_this_cat_label' => NULL, 'edit_one_cat_label' => NULL, 'do_next_description' => NULL, 'appended_actions_already' => false, 'select_name_description' => NULL, 'care_please' => true, 'new_id' => NULL, 'no_blank_ids' => true, 'table_prefix' => '', 'array_key' => 'id', 'title_is_multi_lang' => true, 'orderer' => NULL, 'table' => NULL, ))
Args

File'/home/prehisto/public_html/sources/zones.php'
Line'330'
Function'run'
Class'standard_aed_module'
Type'->'
ObjectModule_cms_news::__set_state(array( 'lang_type' => 'NEWS', 'select_name' => 'TITLE', 'code_require' => 'news', 'permissions_require' => 'high', 'permissions_cat_require' => 'news', 'permissions_cat_name' => 'main_news_category', 'user_facing' => true, 'seo_type' => 'news', 'award_type' => 'news', 'possibly_some_kind_of_upload' => true, 'upload' => 'image', 'menu_label' => 'NEWS', 'donext_type' => NULL, 'module_type' => 'news', 'redirect_type' => NULL, 'javascript_require' => NULL, 'skip_validation' => false, 'default_type' => 'misc', 'author' => 'Chris Graham', 'organisation' => 'ocProducts', 'send_validation_request' => true, 'check_validation' => true, 'archive_entry_point' => NULL, 'archive_label' => NULL, 'view_entry_point' => NULL, 'protect_first' => 0, 'permission_page' => NULL, 'permission_module' => NULL, 'permissions_cat_require_b' => NULL, 'permissions_cat_name_b' => NULL, 'add_text' => '', 'edit_text' => '', 'extra_donext_entries' => NULL, 'extra_donext_categories' => NULL, 'extra_donext_whatever' => NULL, 'extra_donext_whatever_title' => NULL, 'do_next_editing_categories' => false, 'special_edit_frontend' => false, 'cat_aed_module' => Module_cms_news_cat::__set_state(array( 'lang_type' => 'NEWS_CATEGORY', 'select_name' => 'TITLE', 'permissions_require' => 'cat_high', 'permission_module' => 'news', 'javascript' => 'standardAlternateFields(\'file\',\'theme_img_code*\');', 'menu_label' => 'NEWS', 'module_type' => NULL, 'redirect_type' => NULL, 'code_require' => NULL, 'javascript_require' => NULL, 'skip_validation' => false, 'default_type' => NULL, 'author' => 'Chris Graham', 'organisation' => 'ocProducts', 'user_facing' => false, 'send_validation_request' => true, 'check_validation' => true, 'archive_entry_point' => NULL, 'archive_label' => NULL, 'view_entry_point' => NULL, 'protect_first' => 0, 'permission_page' => NULL, 'permissions_cat_require' => NULL, 'permissions_cat_name' => NULL, 'permissions_cat_require_b' => NULL, 'permissions_cat_name_b' => NULL, 'add_text' => '', 'edit_text' => '', 'extra_donext_entries' => NULL, 'extra_donext_categories' => NULL, 'extra_donext_whatever' => NULL, 'extra_donext_whatever_title' => NULL, 'do_next_editing_categories' => false, 'special_edit_frontend' => false, 'upload' => NULL, 'possibly_some_kind_of_upload' => false, 'cat_aed_module' => NULL, 'alt_aed_module' => NULL, 'seo_type' => NULL, 'award_type' => NULL, 'posting_form_title' => NULL, 'posting_form_text' => '', 'posting_form_text_parsed' => NULL, 'type_code' => 'd', 'catalogue' => false, 'non_integer_id' => false, 'output_of_action_is_confirmation' => false, 'second_stage_preview' => false, 'add_submit_name' => NULL, 'edit_submit_name' => NULL, 'do_preview' => true, 'add_one_label' => NULL, 'add_one_cat_label' => NULL, 'edit_this_label' => NULL, 'edit_one_label' => NULL, 'edit_this_cat_label' => NULL, 'edit_one_cat_label' => NULL, 'do_next_description' => NULL, 'appended_actions_already' => false, 'select_name_description' => NULL, 'care_please' => true, 'new_id' => NULL, 'no_blank_ids' => true, 'table_prefix' => '', 'array_key' => 'id', 'title_is_multi_lang' => true, 'orderer' => NULL, 'table' => NULL, )), 'alt_aed_module' => NULL, 'posting_form_title' => ocp_tempcode::__set_state(array( 'code_to_preexecute' => 'if (!isset($TPL_FUNCS[\'do_runtime_1267773022ea278494c\'])) $TPL_FUNCS[\'do_runtime_1267773022ea278494c\']="extract(\$parameters,EXTR_PREFIX_ALL,\'bound\'); echo evaluate_conventional_variable(\$current_lang,array(),2,\"NEWS_ARTICLE\",\$parameters);"; ', 'seq_parts' => array ( 0 => array ( 0 => 'do_runtime_1267773022ea278494c', 1 => array ( ), 2 => 2, 3 => 'NEWS_ARTICLE', 4 => '', ), ), 'preprocessable_bits' => array ( ), 'last_attach' => NULL, 'pure_lang' => true, 'codename' => ':container', 'cached_output' => NULL, )), 'posting_form_text' => '', 'posting_form_text_parsed' => NULL, 'javascript' => NULL, 'type_code' => 'd', 'catalogue' => false, 'non_integer_id' => false, 'output_of_action_is_confirmation' => false, 'second_stage_preview' => false, 'add_submit_name' => NULL, 'edit_submit_name' => NULL, 'do_preview' => true, 'add_one_label' => NULL, 'add_one_cat_label' => NULL, 'edit_this_label' => NULL, 'edit_one_label' => NULL, 'edit_this_cat_label' => NULL, 'edit_one_cat_label' => NULL, 'do_next_description' => NULL, 'appended_actions_already' => false, 'select_name_description' => NULL, 'care_please' => true, 'new_id' => NULL, 'no_blank_ids' => true, 'table_prefix' => '', 'array_key' => 'id', 'title_is_multi_lang' => true, 'orderer' => NULL, 'table' => NULL, ))
Args

File'/home/prehisto/public_html/sources/site.php'
Line'935'
Function'load_module_page'
Args'cms/pages/modules/cms_news.php'

'cms_news'


File'/home/prehisto/public_html/sources/site.php'
Line'727'
Function'request_page'
Args'cms_news'

true


File'/home/prehisto/public_html/cms/index.php'
Line'50'
Function'do_site'
Args




Art and Imagination
of David L Friend

http://davidlfriend.com

  My Art Gallery
powered by ocPortal
Back to the top
 
Posted
Rating:
#58674
Avatar

Maybe what you were telling me was "Submit other users…" really doesn't mean "others" and it should be ticked and this doesn't allow "Others" to be submitted to anyway, so don't worry?

Yes, we made this error recently when we renamed some permissions for clarity - unfortunately we got that one renamed wrong.

I haven't had time to try out the "Permission Tree Editor" instructions as of yet to see if it helps.

It'll definitely help :).


Become a fan of ocPortal on Facebook or add me as a friend. Add me on on Twitter.
Was I helpful?
  • If not, please let us know how we can do better (please try and propose any bigger ideas in such a way that they are fundable and scalable).
  • If so, please let others know about ocPortal whenever you see the opportunity.
  • If my reply is too Vulcan or expressed too much in business-strategy terms, and not particularly personal, I apologise. As a company & project maintainer, time is very limited to me, so usually when I write a reply I try and make it generic advice to all readers. I'm also naturally a joined-up thinker, so I always express my thoughts in combined business and technical terms. I recognise not everyone likes that, don't let my Vulcan-thinking stop you enjoying ocPortal on fun personal projects.
  • If my response can inspire a community tutorial, that's a great way of giving back to the project as a user.
Back to the top
 
There are too many online users to list.
Control functions:

Quick reply   Contract

Your name:
Your message: