Posted by ccdoss on December 20, 2007 at 2:56am
I've created a service for my Flex app. It determines if a user has a certain role. I need this service available to authenticated users. However, it appears that only the original user can access this service. How do I specify permissions for services so that I can allow other users to access them?
Comments
It's possible you haven't
It's possible you haven't set access control for Services properly on admin/user/access, and the "original user" you talk about is User 1 the superuser who is not limited by access control.
The only available
The only available permissions are "access service" and "administer service". What settings should be checked? I've got access service checked for authenticated users, which allows them to go to mywebsite/service/amfphp, but it won't let them go to the page where I can browse services, and the flex app says it get an error when it tries to access the service. Also, mywebsite/services/browser isn't found. Could that be a related problem?
'Administer services'
'Administer services' setting should allow them to access admin/build/services/browse
'mywebsite/services/browser' (ie. 'services/browser') is not valid path, that would mean you have a server called "browser".
Another Method
Is there another way to let them access the service? I really don't want them being able to change any settings or anything for the services. I really just want the service to interact with the flash app. Here's my scenario:
I have a Flash app that I want to be controlled by Drupal. I have created a page, controlled by drupal, that I put the flash app on. Drupal of course controls access to that page based on user. However, if a user somehow found out the url to the actual flash app, it would come up. Therefore, I want it to connect to a service (successfully created) that allows it to check the user role of the person logged in.
What's the best method for this?
Did you ever find a way
I see this is a very old thread, but it describe precisely what I am struggling with. I even experimented with enabling administrate services and that did not change the "access denied" message. The admin is fine to create nodes using services, but not other users.