Doc.Config User Permission
ARTICLE module allows administrator to config access permission for each user, in this documentation, the following parts will be introduced:
- Config module access permission for system role
- Config module resource permission for system role
- Config module resource permission for dynamic role
ARTICLE module have initialized two role for itself when it is installed, there article-manager for front-end and contributor for back-end, respectively. These roles should be the parent role of that you created because we only allowed its children role to operation article module.
IN the front-end, we create a temporary role and make it inherit from article-manager:
THEN at the back-end, a role named primary is created and inherits from contributor:
NOW we can create a new account and set its user role and management role:
AFTER roles are initialized, we can config the system permission:
THIS config allows the created account (linzongshu) to access front section of system and article modules. Such as log in, log out, article homepage etc.
THIS config allows the account to access operation section of article module. These is the basic permission of a article administrator.
NOW it is time to config user permission to access resources (it mainly be controller here) of article module.
THIS configuration allows the user to manage author section, such as add/edit/delete a author, in the author, category, topic and media section, we do not define an action or an operation as a resource, this says, if user have permission to management media, all pages and resources defined by MediaController is open to the user.
THIS configuration allows the user to access the pages define by ConfigController (it mainly be the config navigation in operation section).
LOG in permission page of article operation section, and click List level sub-navigation and then add a level:
THIS level tells that the account belong to this level only have article compose and pending article edit permission. In other word, the level defines user permission to access resources in article module.
ARTICLE module allows users to manage different category, then we need to add a user level, click the List user level navigation and add a user level:
IN the page, we can find we only choose the account with its role inherit from article-manager to manage article module.
YOU can click the dropdown button to get all category, select a category and then click the '+' button, the category will display under category form, it allow to choose multi-categories, and if you want to select all category, just let the category empty.
THE configuration means account linzongshu have compose and pending article edit permission under default category.
NOW we have completed all permission configuration, use your account to log in, you will find your content management system be more safe.