Old Forums
Search:
Portal Engine Questions on portal engine and web parts.
Version 5.x > Portal Engine > Managing Roles & Permissions View modes: 
User avatar
Member
Member
john.rymer-terradon - 4/18/2011 1:21:41 PM
   
Managing Roles & Permissions
We have several clients that need the ability to create their own users and permissions.

However, we are being very cautious as to what areas of the CMS Desk we leave open for editing (particularly the Design tab).

Let's say the typical permissions for any given user starting out is CMS Desk Editor. From there, we may have one or two users that need the ability to add users. If we give them Modify permissions to users, that in turn gives them the ability to grant permissions way beyond their own. So even though we don't give them access to the "Design" tab in the CMS Desk, they can grant access to the Design tab for the users they create, as well as override the permissions we set and give it to themselves.

We need to find a way to give Modify permissions to a "User Administrator" without giving them the ability to grant permissions that they themselves do not have.

User avatar
Kentico Support
Kentico Support
kentico_radekm - 5/2/2011 7:09:41 AM
   
RE:Managing Roles & Permissions
Hello.

Regrettably, I did not find solution for this, using combination of our current security model and UI personalization. Currently, we do not support so fine differentiation of user rights. If some editor has Read / Modify permissions for Module:Users, she can do exactly what you described. You would need to have a full source code license and do some customization to achieve such a behavior, however I can´t provide native solution for non-source code solution, as such a combination is not supported. I am sorry for inconvenience.

Best Regards,
Radek Macalik

Top