[horde] Object Creator Permission
dom.lalot at gmail.com
Wed Feb 25 07:23:32 UTC 2009
2009/2/23 Alfonso Marín Marín <almarin at um.es>
> Hi all,
> We are trying to use kronolith shared calendars to manage shared resources
> (cars, meeting-rooms, etc). We need:
> - Only a group of users can see the calendars and make reservations
> - Every user can only edit or delete their own reservations.
> To achieve that, we are using:
> - SHOW and READ perms to that group of users.
> - MODIFY + DELETE to "creator object".
> It works, but we have a problem: the calendars are available for writing to
> all users because of the "creator object" permisson.
I don't understand exactly why it's working like that, but we have been
obliged to get rid of anything expect user ou group shares by editing the
template. When you have many user account, you can't play with that kind of
> It happend because kronolith (and in every horde application) checks only
> for EDIT permissions.
> So i have 2 questions:¿ Does another another permission combination exist
> to achieve that scenario?
> ¿Would it be reasonable checking for SHOW perms in creating aplication
> forms? I think that an user should create events from application UI only in
> those calendars that are accesible from the UI (i mean, only in those
> calendars with SHOW perms).
> Horde mailing list - Join the hunt: http://horde.org/bounties/#horde
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
Ingénieur Systèmes et Réseaux
More information about the horde