Is there a way to restrict an admin to certain areas of the site?
For example, I wish to allow someone access to the catalog area for product entry but not to other areas of the admin.
Is there a way to restrict an admin to certain areas of the site?
For example, I wish to allow someone access to the catalog area for product entry but not to other areas of the admin.
Great spirits have always found violent opposition from mediocre minds. The latter cannot understand it when a person does not thoughtlessly submit to hereditary prejudices but honestly and courageously uses their intelligence.
There is an Admin Profiles contribution in the Downloads area which adds support for this.
.
Zen Cart - putting the dream of business ownership within reach of anyone!
Donate to: DrByte directly or to the Zen Cart team as a whole
Remember: Any code suggestions you see here are merely suggestions. You assume full responsibility for your use of any such suggestions, including any impact ANY alterations you make to your site may have on your PCI compliance.
Furthermore, any advice you see here about PCI matters is merely an opinion, and should not be relied upon as "official". Official PCI information should be obtained from the PCI Security Council directly or from one of their authorized Assessors.
That was perfect!
In case anyone else is interested, the link to Admin Profiles is: http://www.zen-cart.com/index.php?ma...products_id=86
Thank you very much DrByte. :)
Great spirits have always found violent opposition from mediocre minds. The latter cannot understand it when a person does not thoughtlessly submit to hereditary prejudices but honestly and courageously uses their intelligence.
Hi dudes
this solution is brilliant!
(make sure to install the sql patch through the admin area before uploading the files, from the link above!)
I have a question! is it posible to restrict specific products for admin uses as well?
Is there any way of customizing the admin home page and provide a link on it for individual admin users?
Many thanks
Matt
http://www.designsdirect.co.uk
Interesting suggestion but may I ask where would the link points actually ? To which page would you link to point the URL for these specific admins from the index page exactly ?provide a link on it for individual admin users?
i would want a specific user to have acccess to only one product! so the link would be directed to a single product that they can update themselves!
when an admin user updates their product i have put a simple redirect code at the end of the denied.php file inside the admin profiles download!
<?php
echo 'Sorry, your security clearance does not allow you to access this resource.<br /><br />
Please contact your site administrator if you believe this to be incorrect.<br /><br />
Sorry for any inconvenience.';
?>
<meta HTTP-EQUIV="REFRESH" content="0; url=http://www.yourdomain.com/admin/index.html">
This is following an idea to create a recruitement agency website using the zen cart!
Hum ... I guess this request is really for implementing into the admin profiles MOD. If so, I believe the author of that MOD could help you out under her / his official topic.
However, I do have a little suggestion.
replace with:PHP Code:<meta HTTP-EQUIV="REFRESH" content="0; url=http://www.yourdomain.com/admin/index.html">
PHP Code:<?php echo zen_redirect(zen_href_link(FILENAME_DEFAULT, '', 'NONSSL')); ?>![]()
When an admin user logs in a session variable with their admin_id is created.
You could read this session variable to determine which user has logged in and use a conditional or switch statement in admin/index.php to present them with just a link to their product.
However, you would have to set each link up individually (or write more complex code to create database entries) and this would not prevent them from experimenting with the URL to access other products.
Kuroi Web Design and Development | Twitter
(Questions answered in the forum only - so that any forum member can benefit - not by personal message)
There's a possibility of blocking this utility from unauthorized admin IDs actually. Perhaps I could create an individual restricted products MODs so that only authorized admins would be able to either, update or delete that particular product if needed.and this would not prevent them from experimenting with the URL to access other products.