Access control, users permissions in silverstripe



notes for Access control, users permissions in silverstripe:

groups -> based on identity (objects, subjects) roles -> based on activities (permissions)

checklist

create groups, create users, assign them (no permissions! leave everything empty!) create roles: uploader, event_editor with permissions! then click on the group -> tab roles and assign role to group who can view (frontend!): go to parent page and set -> inherit (or anyone) ! who can edit: go to parent page and set -> group to hide content from other groups just create another page, hidden from menus and set VIEW to GROUP create new group: TestGroup permissionstab -> check Access to 'Pages' section create new user: TestUser (user email address as login!) assign to group TestGroup select Test root page -> settings -> set Viewer Groups & Editor Groups -> TestGroup ... create another group/user for Test2 they can now only see their pages! (and all unassigned ones!)



Tags:
Published: December, 2014