Zenphoto
The simpler media website CMS
ZenphotoThe simpler media website CMS
Forum search only. You might also want to search on the main site's user guide.
Your support helps pay for this server, and helps development of zenphoto. Thank you!
Visit the donations page
Comments
2 Questions:
1.) If All photos were originally discovered by ZP as published photos. Is it possible to bulk unpublish all photos in a gallery. If not through ZP, I suppose using myphpadmin to populate that field with "unpublished" would do it.
2.) If entire gallery is unpublished, then rights are given to my super users to see all unpublished albums, OK fine so far. If I want a lower level group to be able to access a specific sub-album is there a way to do that? I see I can give a group rights to manage a specific album but not edit, which I would assume to be just able to view. But there is no option to do this on a sub-album basis?
It would be great if some user who thoroughly understands user rights, could post some examples of real world scenarios with their respective settings. There seem to be quite a few posts on this subject. Despite reading many times, I find it difficult to implement according to my needs.
Thanks
b) No, user rights can only be assigned to top level albums, not sub albums. Zenphoto is - as you noticed - file system based and the overhead checking the tree for inheritance would be too high.
There are edit and upload rights. First unset "manage all" for the user and then assign a specific album in the list. Then you will see two checkbox right to the name.
I have enable publishcontent, but it does not show up in list of installed plugins, and I can't find a tab for it anywhere in the Admin panel. Am I missing it somewhere?
Running this SQL query will:
`
UPDATE zp_images
SET ``show` = '0'
WHERE `show` = '1'
If you like an option like this feel free to open a ticket.
Security Requirements:
Guest user A can only view 10 sub albums out of 100 sub albums, 2 levels deep.
Guest user A can navigate through upper album thumbnails to get to the ten permitted sub-sub-albums. If they chose one of the 90 other sub-sub-albums they are shown the login page. When they get to the correct level 2 album they can login (with the 10 album password). If they navigate away from the the ten albums to one of the other 90 albums they are shown a login page again.
ZenPhoto users have access to all albums & images.
A guest who knows the path to a sub-sub-album but does not have a password is blocked.
A guest can see 2 levels of of thumbnails but no images.
Solution:
All images & galleries are "published".
Gallery is "public" with no password applied.
Level 1 albums are public with no password applied (they do not contain images).
Level 2 albums have either of 2 distinct passwords applied: one for the 90 albums and 1 for the other 10 albums.
My testing shows that this works.
Reasoning:
Since credentialed ZenPhoto users or groups can not be assigned to specific sub-albums, discrete access to specific sub-level albums can only be accomplished through guest user passwords. (I'd love to be proven wrong on this!)
If credentialed users were allowed assignment to specific sub level albums (rather than top level only) satisfying a variety of security requirements would be much simpler.
Thanks you for looking inot this scenario, I would appreciate your insight.