Permissions vis roles

lawrence whittemore asked on May 18, 2015 15:31

what is the best way to set up permissions so that users only have access to sections that their roles are assigned to without having to manually block access to everything they shouldn't have access to.

permissions roles security

Recent Answers

Petar Kozjak answered on May 18, 2015 19:33

Hi,

heave you tried to pay with UI Personalization? This could help you to customize interface...

0 votesVote for this answer Mark as a Correct answer

lawrence whittemore answered on May 18, 2015 20:01

Is there a way so that pages in the tree that the user doesn't have access to hide?

0 votesVote for this answer Mark as a Correct answer

Charles Matvchuk answered on May 18, 2015 21:50

@Lawrence, I did something similar here, perhaps it will help you. Back End and Users

0 votesVote for this answer Mark as a Correct answer

Rui Wang answered on May 21, 2015 16:39

Lawrence, this is what I normally tell people in training about setting up this permission

In the Roles app > select the Role (ex: MarketingEditors) > go to Permission tab, select module > Content. Here, you should only give the role the basic permission like Browse Tree and Read. With this basic permission setup, editor in that role can browse the whole content tree, but cannot edit any page.

Then go to the parent page of a section, go to Properties > Security. Break permission inheritance, add the role you want to edit that section. Then give that role the permission to modify, add, edit, delete (maybe not destroy). Now editor in that role will only be able to edit that section.

So the basic rule is: in the role module permission, give minimum permissions. Then assign more on the Page permission level.

1 votesVote for this answer Mark as a Correct answer