> Can any asset be tied to this workflow system or is it limited to
> page changes?


Logically? Yes! because the model uses the classNameId/classPK paradigm.
But currently the requirement is to handle pages.

The difficulty of integrating this with all the individual assets will
of course be injecting the code which handles the Staging workflow into
every portlet which is subject to the workflow.

Right now (in my code) the issue of assets is addressed indirectly based
on Layouts... how? Because every portlet must exist on a Layout.
Therefore publishing changes to assets in a given portlet requires
publishing the Layout.

For example, under the "Managed Staging" scenario, when a "Creator"
creates/updates an Journal Article in the Staging environment,
publication control is controlled through the workflow only. This means
that in order to have the Journal Article published from Stage to Live,
the Layout containing the Journal portlet, which contains the Journal
Article, must be "Proposed" as a change (i.e. submitted into the
workflow).

Or alternatively, if the Journal Article is displayed in a Journal
Content portlet on a Layout withing Stage... this Layout could be
proposed as a change, allowing the workflow to handle it's approval and
publication... and when the Layout is Published, the Journal Content
portlet along with its Journal Article will be published as well.

Note for example that in most cases this works just fine... Consider for
example the Asset Publisher... where the configuration is simple a
collection of portlet preferences defining the tag logic used to return
results and the display settings... once defined the Layout containing
the Asset Publisher portlet is "proposed for Publication", and once
approved, the layout, portlet, and portlet preferences are pushed to
Live.

Hey Ray,

This looks very very good!

Regarding your questions, I pretty much agree with everything Ed said. In particular, I'd like to explore other alternatives rather than creating those roles. Be aware that we would have to create those roles not only for communities but also for organizations.

Also, I think we should try to avoid creating the list of available reviewers based on the roles they have. That would break user's expectations when creating custom roles that contain the appropriate permission. If we want to be consistent we should not check directly against roles and always do it against permissions. I understand that's quite hard and don't have a solution right now but we should try to find it since this need will come again and again.

On Wed, 2008-02-20 at 07:30 +0000, Ed Shin at Liferay's Community Forums
wrote:

> I don't really know what the requirements are, but looking at this from the perspective of teaching someone else how to use it I'd like to make the following suggestions:
>
> If we're using MANAGE_LAYOUTS in core, then I think we should change it to MANAGE_PAGES. I think that makes more sense to most users.


I think the outputted term is actually "Manage Pages".


> I think both the "Community Owner" and "Community Administrator" roles should have permissions to do everything. To me, it makes sense that Community Administrators should be able to do anything except change the permissions of the Community Owner.


They do, and this is not changing!!!


> In terms of actors, what's the difference between Staging Managers and Editors?


The "Staging Manager" (a.k.a. most likely the Community Owner in 99% of
cases) has the ability to create/break the staging environment...

The reason for the distinction between "Staging Manager" and the
permission of MANAGE_LAYOUT, which is our "Community Administrator", is
due to the fact that, in order to allow some users to have the ability
to create pages, add portlets, etc.. you MUST grant them
MANAGE_LAYOUT... BUT we DEFINITELY don't want to allow those users to
BREAK the staging evironment... so we HAVE to make the specific
distinction...

Omni admins and Community Owners will always be able to create/break a
staging env... But some one who is just a content creator should NOT be
able to do this.




> I don't like the term "Producer" since it almost seems as if he should be producing content. Unfortunately, I don't have any alternative suggestions, so maybe we should just go with that term.


Yes, it's intention here was in the sense used in
"Publication/Print/Movie" production... the Producer essentially is the
broker in the workflow... he/she assigns tasks/is first line of
approval... but doesn't really have the last word... that's the
"Editor's" privilege.




>

- MANAGE_STAGING : Represents the "Staging Manager".

>
> I think this one is easy to understand


Good, note that this doesn't require a role per say... as "Community
Owner" will play this role OOTB (though the permission will exist to be
delegated to anyone).



>

- PUBLISH_STAGING : Represents the "Editor".

>
> As an end user, I'd have a hard time figuring out the difference between PUBLISH_STAGING and MANAGE_STAGING. Aren't they essentially the same, or does one have more rights than the other?


Keep in mind that many of these parts can be played by the same
person... for example, a "Community Owner" will, by default, play the
role of "Staging Manager" and "Editor". BUT, we need to address the role
separately in order that, when required, this role can be delegated
independently of Community ownership.



>

- ASSIGN_REVIEWER : Represents the "Producer".

>
> I think this one is easy to understand too


Good.



>

- APPROVE_PROPOSAL : Represents the "Reviewer".

>
> I'm not sure how intuitive proposal would be for an end user, but I think this one is good too.


I'm open to changing "Porposal". What would you suggest?


>
>

- * MANAGE_LAYOUTS : (unchanged from current) Represents the "Creator".

>
> I think this one is easy to understand too
>
>
> From the end user perspective, I'd prefer not to add new roles. I think the less default roles that we have, the easier it is to understand. But if this means that the backend code will be complex, I'd rather go with clean code becauuse it will be easier to extend. Would it be possible to assign the permissions by User, Org, Loc, etc. instead of adding new community roles? If not, can we just add the Community Reviewer Role and not the other 2?



We will be able to grant these permissions to User, Role, Org. The
problem is finding users within context (in this case the Community) who
have a given permission... this is currently best handled by using
roles..



Use case for the workflow:

A "creator" has just created a new page. He decides that it is ready for
publications. He then makes a "proposal" to the "producer" to have this
new page published. The "producer" makes an initial review. The
"producer" has two options: reject, or grant that the proposal has
sufficient merit to be published. The "producer" may "comment" on the
"proposal" suggesting some initial change, after which they would deem
the proposal worthy of "official review". The "creator" reads the
comments, and makes the change. The "creator" comments that the change
was made. The "producer" sees the change, and assigns "reviewers" to
look at the proposal to ensure quality. Once every "reviewer" has
granted their approval of the proposal (after some back and forth
changes & discussion with the producer and creator), the "proposal" is
made available to the "editor". The "editor" now has the final word as
to whether to grant the "proposal" and ultimately to publish it.