SimplePortal
Development => Bugs => Fixed or Bogus Bugs => Topic started by: Manu on October 17, 2008, 05:31:42 PM
-
Hi,
could be I'm blind, but I don't think so.
I gave a member group in our forum the permission to moderate the Portal, but the member
who is in the group can't enter the Admin panel.
I thought when I give this member group the permission to moderate the Portal the member will be able to see the link "Administrator" link in our upper link list.
I tested the member group with my test account and I can't see somewhere a link to enter the Portal Administration.
Do I search at the wrong place?
-
It's very important for us to get a solution for the problem.
Can't help anyone?
-
I must look at it, i thought it will be work automatic if the premission is set.
Bye
DIN1031
-
That's what I thought too, but as it seems it doesn't.
I gave the member group the permission to edit the news in the forum,
cause I thought in this way this member group will be able to enter the admin
panel.
I checked it, the link to the admin section is to see in the upper link list, but
when the member has enter the admin section, he/she won't find the link
"SimplePortal Admin" all they can see you can see at the attachment photo.
-
I won't bother, but is there a solution for our problem, cause it's very important
for our forum to get a solution for the problem. :-[
-
sorry i total forgot it <<... lately i forgot to many things...
So i think you select 'Moderate portal' as premission? :)
I think follow this will solve the problem:
Replace in the Subs.php
if (allowedTo('moderate_forum'))
$context['admin_areas']['sportal']['areas']['sportal'] = '<a href="' . $scripturl . '?action=spadmin">' . $txt['sp-adminTitle'] . '</a>';
with
if (allowedTo('sp_moderate'))
$context['admin_areas']['sportal']['areas']['sportal'] = '<a href="' . $scripturl . '?action=spadmin">' . $txt['sp-adminTitle'] . '</a>';
else
unset($context['admin_areas']['sportal']);
But i'm not sure that the script work ;). It's currently untested.
I forgot there is a possible secure problem in it... because the user can create now php blocks, and i think this should not possible so i think this is not the best way to change this. (I'm not sure.)
Bye
DIN1031
-
sorry i total forgot it <<... lately i forgot to many things...
But i'm not sure that the script work ;). It's currently untested.
I forgot there is a possible secure problem in it... because the user can create now php blocks, and i think this should not possible so i think this is not the best way to change this. (I'm not sure.)
Bye
DIN1031
You aren't alone with forgetting things, I forgot it too, but the member who should get the permission was asking for the solution of our problem. ;)
It works, but not as it should be.
I changed the code you showed, but the link to the admin section in the menu wasn't to see. The link was only to see after I gave the member group the permission to edit the news.
It isn't that big problem when they can create blocks, as long as I still have the option to delete the blocks. ;)
-
But with that they can easy gain admin access ;).
But i look deeper into it, because there are some more problems with the premissions oO.
Bye
DIN1031
-
that's not a permission problem.
Admin.php
isAllowedTo(array('admin_forum', 'manage_permissions', 'moderate_forum', 'manage_membergroups', 'manage_bans', 'send_mail', 'edit_news', 'manage_boards', 'manage_smileys', 'manage_attachments'));
$context['allow_admin'] = allowedTo(array('admin_forum', 'manage_boards', 'manage_permissions', 'moderate_forum', 'manage_membergroups', 'manage_bans', 'send_mail', 'edit_news', 'manage_attachments', 'manage_smileys'));
add your mod's permissions to the arrays above.
if you don't trust someone, just don't give the permission.
-
Did the suggestion above solved your problem?
Might be a good idea to move the Bugs board.
-
Moved to the Bugs Board.
We should have a look at the permissions before the next release. ;)
-
This is fixed.