Forum Discussion

PerBonomi's avatar
PerBonomi
Boss
11 years ago
Solved

Let user without permission add a role

Hi everyone, I'm looking to let certain super users add a specific role to any user. Obviously I don't want to give them the full permission to change roles, so I was wondering if anyone has a code ...
  • Tim_h's avatar
    Tim_h
    11 years ago

    I'll send you a PM with some details PerBonomi !

PaoloT's avatar
PaoloT
Lithium Alumni (Retired)
11 years ago

The approach suggested by nathan seems solid. You may also want to either hardcode the role to grant (in the endpoint), or if it is passed as a parameter, that the parameter is checked against a whitelist of roles that the superusers are supposed to be able of granting (just to avoid someone exploiting the endpoint to add arbitrary roles)

PerBonomi's avatar
PerBonomi
Boss
11 years ago

Thanks guys, I think I understand the principle of how it's supposed to work now. The only way to elevate a user's permission is to use Freemarker to do a restadmin call/post, and that needs to be done with the help of a endpoint. My problem is having an actual example. Without a working example of a component and a endpoint I'm lost.

  • Tim_h's avatar
    Tim_h
    Boss
    11 years ago

    I'll send you a PM with some details PerBonomi !

    • PerBonomi's avatar
      PerBonomi
      Boss
      11 years ago

      Tim_h you are my star. I wish I could give you more kudos. Thanks so much :)

      • lolagoetz's avatar
        lolagoetz
        Boss
        11 years ago
        I'm really glad you posted this, as we may have need of doing something similar.
    • lolagoetz's avatar
      lolagoetz
      Boss
      11 years ago
      Tim_h my team is asking for the same, pretty please?