[Zope] List All users with a given permission
Michael Bernstein
mbernstein@profitscape.net
Wed, 20 Oct 1999 17:09:02 -0700
Stuart 'Zen' Bishop wrote:
> On Tue, 19 Oct 1999, Michel Pelletier wrote:
>
> > > From: Stuart 'Zen' Bishop [mailto:zen@cs.rmit.edu.au]
> > >
> > > I suddenly find myself with a need to populate a list box with
> > > all users with a given permission on a particular object.
> > > Is there any nifty method hidden away to do this? Or would I be
> > > reduced to crawling up the tree looking for userfolders and iterating
> > > over the contents (could be a bit sluggish with 3000+ users...)
> >
> > Uhhhh.... I suspect this can't be done, especially since user's
> > permissions can change from object to object..that's not even the hard
> > part. I could be completly wrong, I'm not the security guru around
> > here.
> >
> > > Perhaps I'll just require tying the username and verifying on form
> > > submission :-)
>
> It gets worse, and I'd really like to hear peoples ideas on doing this,
> or alternative designs.
>
> The situation:
>
> I'm writting a work flow system (well... problem tracking system except
> I don't want it to be technician specfic). I need to find all people with
> the 'Change Job' permission for the following reasons:
> - Populate a selection control to assign someone to a job
> - When a new job is submitted, email everyone with the 'Change Job'
> permission
>
> I need a method that will retrieve a list of all users with a given
> permission on a given object. I think I can do it with the following
> code, but I think it will be painfully slow with over 3000 users
> unless I cache the results:
> <dtml-in "object.get_valid_userids()">
> <dtml-if "_['sequence-item'].has_permission('Change Job',object)">
>
> Append sequence-item to a list
>
> </dtml-if>
> </dtml-in>
I could be off-base here, but maybe what you need is a 'change_job' role? then
you can test for all people who have a certain role.
HTH,
Michael Bernstein.