Groups configuration question

[genfish]

Hi, I'm testing the bundle in Pimcore 11, but after defining the MembersGroup class, when I try to create an object, Admin don't show me Pimcore Roles to select. Am I doing something wrong? Thanks!

[genfish]

I tried add more roles in the config code:

security:
    role_hierarchy:
        ROLE_MEMBERS_MODERATOR: [ROLE_USER]

And now there are 2 roles. The initial role and the role I created. But, the rest of the roles created directly in Pimcore are still missing.

[solverat]

" the rest of the roles created directly in Pimcore"

You can't create roles in pimcore - am I missing something?

You don't have to use roles with members, just use the group object itself to assign them to the user.

[genfish]

Then the bundle roles are completely independent of the Pimcore roles, is this so?

Let me explain, back in Pimcore 4, I developed a system that used platform users and profiles to control which documents, the user could see and access from the frontend. This, with the restriction options you've made, works fine.

But, It could also control which objects the user could see in a list, access, modify, create or delete through the folder where they were saved. That's not possible in your restriction system, no?

[solverat]

Nope, that's not possible. Backend-Role Definitions are completely independent of frontend (which makes totally sense, I think). Every document/object/asset entity has its own Member-Restriction Tab, where you're able to configure user restrictions.

[genfish]

True, in general it makes sense, but in my case, it's about programs that administer with a different interface than the administrative one, the Pimcore objects. That's why it's important to have control of actions on objects with user profiles just as Pimcore manages it. Thanks to response, I will try it myself.