<html dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style id="owaParaStyle" type="text/css">P {margin-top:0;margin-bottom:0;}</style>
</head>
<body ocsi="0" fpstyle="1">
<div style="direction: ltr;font-family: Verdana;color: #000000;font-size: 10pt;">
<br>
<div>
<p>Hi. I have read several pages about ERP5 security model (<a href="http://www.erp5.org/HowTo/HowToUseNewSecurity">http://www.erp5.org/HowTo/HowToUseNewSecurity</a>,
<a href="http://en.wikibooks.org/wiki/ERP5_Handbook/Magic_Security">http://en.wikibooks.org/wiki/ERP5_Handbook/Magic_Security</a> and
<a href="http://copilotco.com/mail-archives/erp5.2007/msg00137.html">http://copilotco.com/mail-archives/erp5.2007/msg00137.html</a>, but I'm still unable to implement a role that allows to users to only see content from his own country.</p>
<p><br>
</p>
<p>In <em>portal_categories/sites</em>, I defined two sites: France and Spain. </p>
<p><br>
</p>
<p>In <em>Persons</em>, I created two users: <strong>french_user </strong>(with an assignment of
<em>group=my_group</em>, <em>function=manager</em> and <em>site=france</em>) and <strong>
spanish_user</strong><strong> </strong>(with an assignment of <em>group=my_group</em>,
<em>function=manager</em> and <em>site=spain</em>).</p>
<p><br>
</p>
<p>Then I logged with <em>french_user</em> and I created 3 products, and after that I used
<em>spanish_user </em>to create another 3 products (I'm trying to implement the security for the Products module).</p>
<p><br>
</p>
<p>Finally, in <em>portal_types/Module</em>, I modified the default role:</p>
<ul>
<li>Roles:Assignor, Assignee, Associate, Auditor, Author</li><li>Base categories: <br>
</li><li>Base category script: <br>
</li><li>Categories: group/my_group</li></ul>
<p>Into:</p>
<ul>
<li>Roles:Assignor, Assignee, Associate, Auditor, Author</li><li>Base categories: site</li><li>Base category script: ERP5Type_getSecurityCategoryMapping</li><li>Categories: group/my_group</li></ul>
<p>However both <em>spanish_user </em>and <em>french_user </em>can see and modify all the products (even the ones created by the other user), and I want that they only are able to see the products of their own country.</p>
<p><br>
</p>
<p>Note that the definition of ERP5Type_getSecurityCategoryMapping is the following:</p>
<blockquote><font face="courier new,courier,monospace" size="2">return (</font><br>
<font face="courier new,courier,monospace" size="2">('ERP5Type_getSecurityCategoryFromAssignmentStrict', ['function']),</font><br>
<font face="courier new,courier,monospace" size="2">('ERP5Type_getSecurityCategoryFromAssignmentStrict', ['follow_up']),</font><br>
<font face="courier new,courier,monospace" size="2">('ERP5Type_getSecurityCategoryFromAssignmentStrict', ['function', 'follow_up']),</font><br>
<font face="courier new,courier,monospace" size="2">('ERP5Type_getSecurityCategoryFromAssignmentStrict', ['group']),</font><br>
<font face="courier new,courier,monospace" size="2">('ERP5Type_getSecurityCategoryFromAssignmentStrict', ['site']),</font><br>
<font face="courier new,courier,monospace" size="2">('ERP5Type_getSecurityCategoryRoot', ['group']),</font><br>
<font face="courier new,courier,monospace" size="2">)</font></blockquote>
</div>
</div>
<br><br>
<hr>
<font face="Verdana" color="Gray" size="1">This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the system
manager and delete it from your system; you may not copy this message or disclose its contents to anyone. Please note that any views or opinions presented in this email are solely those of the author and do not necessarily represent those of the company. Please
send us by fax any message containing deadlines as incoming e-mails are not screened for response deadlines. The integrity and security of this message cannot be guaranteed on the Internet. Finally, the recipient should check this email and any attachments
for the presence of viruses. The company accepts no liability for any damage caused by any virus transmitted by this email.<br>
</font>
<br>
­­ </body>
</html>