Author Topic: Access Control Problems (Read 2339 times)

southern · June 09, 2007, 11:46:12 pm

I have installed CiviCRM on our non-profits website to assist in managing volunteer records.
We are using Joomla! 1.0.12 and CiviCRM 1.7.9682. Got it installed correctly, but here is what is going on.

What our plans are.

We wish to have basically 3 types of users

Administrators - complete unlimited access
Team Leaders - can add and edit their information and the information of volunteers all information
Volunteers - can edit their basic information

The problem that I am in the process of getting it all setup.

I have a couple of people listed in CiviCRM, 1 Admin, 1 Team leader and 1 volunteer. I have created a profile with the fields that can be viewed and edited by the volunteers, and a copy of fields that have been marked as view only.

When I login with the volunteers login, it seems that be correct in that we can see fields that allow them to update their name and email address and then a field that is viewable only.

But when I login with either the admin or team leaders login, it still shows the same and I can not access the fields that should be editable by these individuals. I have setup the access control options and everything seems right, but it just does not work.

We really wish to make this work. There are not many items out there that will allow us to do this.

The information that the volunteers needs to be able to edit is just general items, name address, email, etc. the other items that the team leader would be changing would be training classes completed, dates of the training, certificates issued, etc.

We don't want a regular volunteer to be able to change that, but do want them to be able to see what they have done.

Any help would be great.

Donald Lobo · June 10, 2007, 12:50:42 am

Chris:

I think in Joomla, we can pretty easily do Administrators and Volunteers

Volunteers can edit their own records on the front end. Administrators can record the volunteer information either via contact or via a profile at the back end. Note that a view only field is view only for ALL users (including admin)

For team leaders, you would probably need to give them a backend login and hence full access to civicrm. Unfortunately our access control in joomla is pretty much non-existent. If you need more details, u can catch us on IRC

lobo

southern · June 10, 2007, 05:20:16 pm

Ok, you may not know this or maybe you do, is there a way to limited their backend access so that they can only get into the CiviCRM. We do not all anyone to control the site, besides me.

Thanks.

southern · June 10, 2007, 05:39:00 pm

What is the difference between the Joomla Version and the Dupral Version of CiviCRM and what is the difference between the two CMS themselves. I only have limited use (just started) with joomla, bu don't want to change to something else either.

Donald Lobo · June 10, 2007, 06:40:32 pm

1. Dont know if there is an easier way to restrict access to rest of joomla backend but CiivCRM. I suspect not

The permissioning scenario is much better flushed out in drupal

2. differences between civicrm integration with drupal and joomla:

a. better user integration with drupal registration process
b. fairly decent permissioning system in drupal (non-existent in joomla)

3. differences between the two cms's

http://www.idealware.org/articles/joomla_drupal_plone.php

You might also want to do a search and find a few more articles with regard to this topic

lobo

southern · June 10, 2007, 08:04:56 pm

The only reason I am asking is that I need to have a website that I can use to maintain a membership database. With the normal volunteers being limited on what they can do and the team leadres can take care of the other information.

If that would be possible by using CiviCRM and Drupal, then I might obtain an additional website to use for it, but I want to make sure that I do not have to give backend access to anyone other than myself.

Volunteers only need to access (edit) their personal information, contact, etc. But the team leaders need to be able to edit all information for the volunteers, while myself would be able to edit all.

Is that possible with running this on Drupal?

Donald Lobo · June 10, 2007, 10:05:54 pm

Yes, the below is a bit easier (and possible) with Drupal. Not sure how much experience you have with Joomla, but there will be some amount of startup time while you get familiar with Drupal and permissioning etc.

Drupal does not have a backend / frontend split like joomla. Different users can be given different permissions based on their Drupal Role and CiviCRM ACL Group. If you do go down this path, you might want to get on IRC so you can ask for help and assistance on the civicrm channel

lobo

speleo · June 12, 2007, 12:56:46 am

Having been in the Joomla camp for a couple of years I would not start a new project that required layered ACL on it. While a decent ACL is high on the J! user's and dev's wish list it still looks like this is a very long way away. Joomla 1.5 does not included it and has been in dev for way too long (there is more activity on the CiviCRM commit list) and J! 1.6 is miles off.

If you need an ACL then Drupal is the way forward.

CiviCRM Community Forums (archive)

News:

Author Topic: Access Control Problems (Read 2339 times)

southern

Access Control Problems

Donald Lobo

Re: Access Control Problems

southern

Re: Access Control Problems

southern

Re: Access Control Problems

Donald Lobo

Re: Access Control Problems

southern

Re: Access Control Problems

Donald Lobo

Re: Access Control Problems

speleo

Re: Access Control Problems