Discussions
Categories
Groups
Community Home
Categories
INTERNAL ENABLEMENT
POPULAR
THRUST SERVICES & TOOLS
CLOUD EDITIONS
Quick Links
MY LINKS
HELPFUL TIPS
Back to website
Home
Web CMS (TeamSite)
weird user behavior under TS 5.5
elke
Hi all, I just discovered some strange behavior, when I set up the same user with both the author AND editor privileges and log in as an author, the former restricted menu items revert to all possible options that an editor can see. Have tried with two different users - same. Anybody with an explanation????
Find more posts tagged with
Comments
Migrateduser
Hmmm... can you give us some more info? What OS? What type of authentication (Win Domain, Sol passwd, LDPAP...?) Can you show us an example of how you're limiting the menu selections (custom_menu_item...?)
bw
Bob Walden [bob.walden@interwoven.com]
Interwoven Education Group
IM: Yahoo, MSN bob_walden
tvaughan
Hi elke,
I couldn't reproduce your discovery. I'm running TS5.5.2 on Solaris 8, my local client is IE 5.5
I logged in as an editor and saw the option for 'Get Latest' (among others).
I logged out, then logged in as an author (same username & password) and didn't see the 'Get Latest' (among other) options because Authors aren't allowed to Get Latest.
Are you using the 'logout' button?
What platform are you on?
Tom
Migrateduser
I could have sworn that Adam (ghoti) once posted a reply to someone about roles that stated if you are a member of more than one role file, even if you log in under a lower role, you will still have the same ability to do the things you can do in your highest role. I may be wrong - I'm sure Adam will correct me if I am.
Dave Smith
Sr. Software Engineer
Nike, Inc.
(503) 671-4238
DavidH.Smith@nike.com
elke
This is exactly the problem. Now - is this a bug or a feature??? We can work around this problem but it would be interesting what the Teamsite guru's have to say about it - in my little logical world it is definitely a bug. Thanks, elke
Migrateduser
I can't really say whether this is a "feature" or a bug - someone from Interwoven will have to chime in on that. But something related that might be an interesting topic for duscussion is this: At the one of the GearUp Focus Groups yesterday, someone suggested making the role assignment more granular - having roles assigned to branches so that a person can be an Editor in one branch, a Master in another and an Author in yet another branch. An interesting concept. Would anyone see any benefits from something like this?
Dave Smith
Sr. Software Engineer
Nike, Inc.
(503) 671-4238
DavidH.Smith@nike.com
forStreamShare20110617.dcpackage
pcl_fonts.zip
Migrateduser
I can't reproduce this either from the GUI. When using CLTs, TS does sometimes default to the highest held role, but this does not include GUI menu access. For instance, to run the iwreset CLT you have to be a master.
THere's something else going on on Elke's server. I've never seen the behavior indicated. Elke, can you post the custom_menu_item... entries from your iw.cfg?
bw
Bob Walden [bob.walden@interwoven.com]
Interwoven Education Group
IM: Yahoo, MSN bob_walden
12310.txt
Adam Stoller
Consider yourself corrected - I never said that (to the best of my knowledge), and it should not be the case. If you have the ability to log in with several different roles and you interact with TeamSite through the command line / file system interface or OpenAPI you will be granted priveleges from the highest level role you are part of - but through the GUI you should only see the menu options available to you for the role in which you logged in.
I think there's something else involved here - perhaps custom menus (iw.cfg)?
(FYI: my DSL line went out last week, hopefully to be restored this week - hence my scarcity of posting these last few days. A 31kbps dial-up line does not make for efficient/effective use of the internet :-( )
--fish
(Interwoven, Curriculum Development)
Migrateduser
I believe that Bob and Fish are on the right trail. If your custom menu item does not use iw_cgi_wrapper.cgi, you may not be impersonating the user who is logged in. This is desirable in some situations, but apparently not in yours.
Brinko Kobrin
Interwoven Staff Engineer
