[Building Sakai] Developer Helper Service
Nguni Phakela
nguni52 at gmail.com
Wed Sep 17 03:25:39 PDT 2014
Hi Stephen,
In the case where the functionality can only be done by Super User, how
does the security advisor handle that?
Cheers,
Nguni
--
Nguni Phakela
Cell: 061-131-2053
skype: nguni52
twitter: @nguni52
On Wed, Sep 17, 2014 at 12:15 PM, Stephen Marquard <
stephen.marquard at uct.ac.za> wrote:
> You should probably avoid changing the current user’s session to admin
> at any time, for any reason.
>
>
>
> Rather use a SecurityAdvisor to permit the actions which your code does on
> behalf of the user, and then clear it when done.
>
>
>
> Regards
>
> Stephen
>
>
>
> ---
> Stephen Marquard, Learning Technologies Co-ordinator,
> Centre for Innovation in Learning and Teaching (CILT)
> University of Cape Town
> http://www.cilt.uct.ac.za
> stephen.marquard at uct.ac.za
> Phone: +27-21-650-5037 Cell: +27-83-500-5290
>
>
>
> *From:* sakai-dev-bounces at collab.sakaiproject.org [mailto:
> sakai-dev-bounces at collab.sakaiproject.org] *On Behalf Of *Nguni Phakela
> *Sent:* 17 September 2014 12:09 PM
> *To:* Sakai Developers
> *Subject:* [Building Sakai] Developer Helper Service
>
>
>
> Hi,
>
>
>
> I am using developer helper service. I am adding users to Sakai and also
> to a course via courseManagementAdministration.
>
>
>
> I am using developerHelperService to become admin, and then I want to
> 'logout' the admin after by using restoreCurrentUser.
>
>
>
> The user sees the login screen, however after successful authentication,
> they are logged in as admin, not using their account.
>
>
>
> Is there a better way to do this, or how do I restore the previous session
> if there was no one logged in?
>
>
>
> Cheers,
>
> --
>
> Nguni Phakela
> Cell: 061-131-2053
>
> skype: nguni52
>
> twitter: @nguni52
> ------------------------------
> UNIVERSITY OF CAPE TOWN
>
> This e-mail is subject to the UCT ICT policies and e-mail disclaimer
> published on our website at
> http://www.uct.ac.za/about/policies/emaildisclaimer/ or obtainable from +27
> 21 650 9111. This e-mail is intended only for the person(s) to whom it is
> addressed. If the e-mail has reached you in error, please notify the
> author. If you are not the intended recipient of the e-mail you may not
> use, disclose, copy, redirect or print the content. If this e-mail is not
> related to the business of UCT it is sent by the sender in the sender's
> individual capacity.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://collab.sakaiproject.org/pipermail/sakai-dev/attachments/20140917/6b6978d4/attachment.html
More information about the sakai-dev
mailing list