Menu
▾
▴
Re: [Bodington-developers] Testing SP : groups-xml-mapper-policy
|
From: Alistair Y. <ali...@sm...> - 2006-06-29 14:00:14
|
yep, you're correct. So the sysadmins group has the same rights as the allusers group! What's it for then? Is it the case that the user "sysadmin" has rights to everything but the sysadmins group is basically meaningless? Logging in as "sysadmin" lets you see all resources but no-one specifically granted access to the user who logs in as "sysadmin". Being added to the sysadmins group gets you access to nothing that isn't public. To get sysadmin access to a resource you have to be in that resource's owners group. So is the user who logs in as "sysadmin" a member of every group on the system? Create a new group and "sysadmin" gets added automatically? Am I missing something? Alistair On 29 Jun 2006, at 14:42, Matthew Buckett wrote: > Alistair Young wrote: >> ok, that's confusing now! The Group tool states: > > Yeah too many sysadmins, sysadmin group, sysadmin permission, > sysadmin user. > >> sysadmins : System administrators for this web site >> >>> The group with all the power is the /site owners group >>> which by default contains sysadmin > >> do you mean the sysadmin user or the sysadmins group? The Group tool >> seems to state that adding someone to the sysadmins groups makes >> them a >> sysadmin with all rights over the whole site. > > With the default database setup that is incorrect (and looking at the > DemoSiteBuilder it seem that is the same). The sysadmin group has > permissions on no extra resources. > >> So whether they end up in >> the sysadmins group via the Group tool or the shibb auth shouldn't >> make >> any difference. But it does for some reason. > > Sysadmin group has no extra permissions. > > I suspect that this may have changed because of Zones as you may have > several sysadmins but not all of them have sysadmin rights to the > whole > site. > > -- > -- Matthew Buckett, VLE Developer > -- Learning Technologies Group, Oxford University Computing Services > -- Tel: +44 (0)1865 283660 http://www.oucs.ox.ac.uk/ltg/ > > Using Tomcat but need to do more? Need to support web services, > security? > Get stuff done quickly with pre-integrated technology to make your > job easier > Download IBM WebSphere Application Server v.1.0.1 based on Apache > Geronimo > http://sel.as-us.falkag.net/sel? > cmd=lnk&kid=120709&bid=263057&dat=121642 > _______________________________________________ > Bodington-developers mailing list > Bod...@li... > https://lists.sourceforge.net/lists/listinfo/bodington-developers |
