wielki Posted September 9, 2009 Share Posted September 9, 2009 I created some new profile: employer, employee so I have got:AdministratoremployeremployeeAnd I have added for employer access to admin site 'Employees site' and he can...... turn off log in for Administrator (and maybe even delete Administrator). I think this isn't good solution ;] Admin is admin - this is the most important person and nobody should have the right to turn off log in or delete admin. Link to comment Share on other sites More sharing options...
wielki Posted September 11, 2009 Author Share Posted September 11, 2009 Will You do something with this ? Link to comment Share on other sites More sharing options...
Patric Posted September 11, 2009 Share Posted September 11, 2009 "Admin" is an account which has all permissions. If you create another account like this,he'll have the same rights, this is normal.But maybe I didn't understand what you mean... Link to comment Share on other sites More sharing options...
wielki Posted September 11, 2009 Author Share Posted September 11, 2009 ok I have 3. profiles:- Administrator- employer- employeeThis is mine admin panel for employer:http://img15.imageshack.us/my.php?image=09112009124442.pngEmployer disabled log in for Administrator - now Administrator can't log in to control panel. How can I create that any user can't disabled log in or deleted Administrator ? Link to comment Share on other sites More sharing options...
wielki Posted September 11, 2009 Author Share Posted September 11, 2009 English isn't my nation language so maybe again mine explain isn't clear ? Link to comment Share on other sites More sharing options...
Patric Posted September 13, 2009 Share Posted September 13, 2009 In PrestaShop, every employee is an employee, even the members of the Administrator profile. If you don't want that an employee who doesn't belong to the Administrator group to be able to disable the Administrators, you'll have to remove them the Edit and Delete rights on the Employee tab.But you are right, should be better that things would happen like you say... Link to comment Share on other sites More sharing options...
first1 Posted September 13, 2009 Share Posted September 13, 2009 still good enough, you can still achieve what you want with the current system.Admin will always have access to the database itself from the back end, and can add himself at anytime straight to the database if something goes wrong. what is the problem Link to comment Share on other sites More sharing options...
Taara Posted September 15, 2009 Share Posted September 15, 2009 Hi wielki,It is batter that system should behave automatically as you said. But Prestashop gave a lot more than we all know.If you are creating another profile then you should give them proper permissions which belong to them.If a group called "Employer", should not have the rights to edit or delete administrator then you should Create a Profile and then by Permission tab gave them the proper rights. It is amazing. If you want that certain tabs should not appear in-front of some group you can even manage that by just assigning Permissions to that group. Link to comment Share on other sites More sharing options...
wielki Posted September 23, 2009 Author Share Posted September 23, 2009 Taara:"If you are creating another profile then you should give them proper permissions which belong to them.If a group called “Employer”, should not have the rights to edit or delete administrator then you should Create a Profile and then by Permission tab gave them the proper rights. It is amazing."lol Taara, I have tested it again in prestashop 1.2.2 and you are wrong - it isn't possible. I have hope that it will be possible in new version of prestashop Link to comment Share on other sites More sharing options...
first1 Posted September 23, 2009 Share Posted September 23, 2009 what is not possible? Link to comment Share on other sites More sharing options...
wielki Posted September 26, 2009 Author Share Posted September 26, 2009 it isn't possible to make that nobody could delete or tun off admin Link to comment Share on other sites More sharing options...
first1 Posted September 26, 2009 Share Posted September 26, 2009 anyone with back access to cpanel (mysql) can do anything including turning off admin. Link to comment Share on other sites More sharing options...
first1 Posted September 26, 2009 Share Posted September 26, 2009 I dont see the issue here, admin has access to mysql (which can do anything) and employer has access to the employees, that is all you need! am i not correct? Link to comment Share on other sites More sharing options...
wielki Posted September 27, 2009 Author Share Posted September 27, 2009 Yes, admin has got access to database where he can add yourself (when somebody delete him) but situation that somebody can delete admin in backend application of prestashop shouldn't have place. Link to comment Share on other sites More sharing options...
first1 Posted September 27, 2009 Share Posted September 27, 2009 you can always make another group that have all the rights appart of deleting employees.so that way no one can delete the admin.I dont see it as a problem Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now