Features / Usability

Features / Usability

Re: Category help

posts: 289 United States

First clear your Tiki temp cache on the page tiki-admin_system.php. This can be the cause of a lot of category/permission, then report back and let everybody know how you got on.

It sounds like you have everything set up correctly, although I did note problems where category permissions would only propagate to the first child category below and not any below that. In other words, permisions applied to "Policy" would only propagate to "Information Security", and not "Approved", "Draft", or "Pending", so check those categories in each case.

posts: 24 United States

I cleared the cache. Now within Assign permissions I have 5 options on Assign Permissions. Before I had only three: tiki_p_view_categories, tiki_p_edit_categories, tiki_p_admin_categories. Now I have an additional two: tiki_p_view_categorized & tiki_p_edit_categorized. I didn't know I was missing those - but still have the same results!

Yes, I have verified permissions only propagating down one level - so I set both tiki_p_view_categories & tiki_p_view_categorized at levels Approved, Draft & Pending, but still no luck.

When I found the extra two permissions on the categories I went back to my Anonymous group and removed all permissions. Then set the permissions within the category as stated above. When I remove these permissions from the group, I can't get at anything on my wiki - it wants a login.

When I enable the tiki_p_view_categories & categorized on the Anonymous group, I can see Categories, just no pages. If I add tiki_p_view to the group Anonymous, then I can see the page through the category listing. Its as if the category php page is not setting the permissions. My thinking is if I can set the groups permissions within the categories, I shouldn't have to have the same permissions set on the group - should I? Shouldn't those permissions set within the category options show as permissions in the admin group options?

posts: 289 United States

This might be a stupid question but are you sure your pages are categorized?

My understanding of the permissions model is that it checks the global permissions first (user group permissions), if the user of a particular user group has sufficient privileges to access a given object then all well and good. If not, the you have to check the special permissions of the category, then of the object itself. If the user doesn't have any of those then it's game over.

So in your case, you should be able to have it so that anonymous users can't see any wiki pages except those that are in special categories, with the appropriate permissions designated. In general, those permissions need to be tiki_p_view_categories and tiki_p_view_categorized, in other words they need to be able to see the category and the object within the category.

posts: 24 United States
Yes, they are categorized. When I choose Admin/Categories and click on Approved, I see one page is categorized. Draft has 10 pages.
posts: 289 United States

I'm at a bit of a loss then.

To recap; "Draft", "Pending" and "Approved" categories should all have both tiki_p_view_categories and tiki_p_view_categorized category permissions granted to the anonymous user group. Furthermore, the anonymous user group itself does not have to have tiki_p_view_categories and tiki_p_view_categorized permissions in order to be able to see all pages categorized under the those categories mentioned above. In fact, if you don't give the anonymous user group those permissions they will only be able to see those pages categorized under the 3 categories mentioned (and any categories above, if they too have the appropriate permissions).

posts: 24 United States
Yes, that is the way I understand it as well. My system just doesn't seem to be working that way.
posts: 24 United States
DarkBee - can you do me a favor? I've been perusing my MySQL database. Can you look at your tables (I'm using phpmyadmin) and particularly tiki_categorized_objects. I only have one field, namely catObjectId. The documentation (http://doc.tikiwiki.org/tiki-index.php?page=Categories+Details&bl=y) leads me to believe I should have more than one, i.e. objId, description, created, etc. I'm wondering if my DB is screwed up. Do you have more than one field in this table?
posts: 289 United States

Nope, I just have one field too, same as you.

I'm guessing this table litterly represents which objects have been categorized or not. If the object ID isn't in the table then the object hasn't been categorized. I can't check right now but perhaps I'll be able to have a look later.

it looks like tiki_category_objects is the table that actually tells you what category each object is in.

As far as the documentation goes, it's a work in progress, I wouldn't take it as gospel.

posts: 289 United States

Did you say that you have 5 category permissions, because I only have 4?

I believe the permissions for version 2.0/2.1 should be:

  • tiki_p_edit_categorized
  • tiki_p_view_categories
  • tiki_p_view_categorized
  • tiki_p_admin_categories

If you have 5 then your upgrade might not have worked correctly. This might explain why you are:

  1. Having trouble get your category permission to work as they should
  2. Understanding the differences between permissions (because one of the permissions is erroneous)