Navigation

Sharing

Description

Customizing the sharing feature of Plone

Setting sharing rights programmatically

Complex example: Create one folder per group and add sharing rights

The sample code

  • Creates one folder per group, with some groups excluded. The folder is not created if it exists.
  • Blocks role inheritance for the group
  • Gives edit access to the group through sharing
  • Gives view access to the logged in users through sharing

Example is provided as Zope External Method. Create External Method in the target parent folder through ZMI. Then run "Test" for this external method in ZMI.

import traceback
from StringIO import StringIO
from zope.component import getUtility
from plone.i18n.normalizer.interfaces import IURLNormalizer


block_groups = ["Administrators","opettajat","kouluttajat","yhteyshenkilot"]

def set_sharing(self):

    try:
        buffer = StringIO()
        context = self
        normalizer = getUtility(IURLNormalizer)

        site  = context.portal_url.getPortalObject()
        acl = site.acl_users
        groups = acl.source_groups.getGroupIds()

        existing_folders = context.objectIds()

        # Create a folder per each group
        for g in groups:

            if g in block_groups:
                continue

            print >> buffer, "Doing group:" + g

            g = g.decode("utf-8")

            id = normalizer.normalize(g)
            if not id in existing_folders:
                context.invokeFactory("Folder", id)

            folder = context[id]

            # Set sharing rights
            # - No inheritance
            folder.__ac_local_roles_block__ = True

            # - Group has edit access


            # - Logged in users have view access

    except Exception, e:
        traceback.print_exc(buffer)

    return buffer.getvalue()

General methods to manipulate local roles (sharing)

folder.manage_setLocalRoles(userid, ['Reader'])

would grant the role "Reader" (Can View on the Sharing Tab) to userid.

Beware that this will set the local roles for the user to only ['Reader']. If the user already has other local roles, this will (untested) clear those.

It will not affect inherited roles.

Add sharing tab to a custom content type

Table Of Contents

About Plone

This is documentation for Plone®. Plone is a popular, open source, content management system written in Python programming language.

Navigation

© Copyright Plone community and other individual contributors. Created using Sphinx 1.1.3.



TEST Brought to you by Read the Docs
Test

Edit this document

The source code of this file is hosted on GitHub. Everyone can update and fix errors in this document with few clicks - no downloads needed.

  1. Go to Sharing on GitHub.
  2. Press Fork and edit this file button.
  3. Edit file contents using GitHub's text editor in your web browserm
  4. Fill in the Commit message text box at the end of the page telling why you did the changes. Press Propose file change button next to it when done.
  5. On Send a pull request page you don't need to fill in text anymore. Just press Send pull request button.
  6. Your changes are now queued for review under project's Pull requests tab on Github.

For basic information about updating this manual and Sphinx format please see Writing and updating the manual guide.