CMS Web Part Authorization Web Part
Web Part Authorization defines what users and roles have access to Personalize the website. This can be defined site-wide and per folder. This Web Part is useful for restricting Users and/or Roles from editing pages within a specific folder.
Procedure
To delete a role rule, click 'Delete' beside the rule.
To add a user rule, click 'Add User Rule'.
To add a role rule, click 'Add Role Rule'.
- Select a folder for which Web Part authorization is defined.
- Review the list of CMS Roles.
- For each rule:
- Select Allow or Deny
- Check enterSharedScope and/or modifyState.
- Check one or more Roles that the rule applies to
- Click Save
Allow and Deny¶
Allow means that the selected actions are allowed for the selected roles.
Deny is the opposite. Think in terms of defining the opposite of what the rule is. e.g. To Deny the Editor Role from changing Web Part data, un-check the enterSharedScope and modifyState options.
enterSharedScopeIndicates and modifyState¶
EnterSharedScope allows a user or role to manage the Content Management System.
ModifyState allows a user or role to modify personalization data for the currently active scope.
Access
This Web Part is accessed by the
CMS Admin Panel.
Edit Properties
Properties that can be edited for this Web Part include:
- Admin Role: A comma-delimited list of Roles that are allowed to view and edit the Web Part.
- Folders: a comma-delimited list of folders that can be viewed with this Web Part. The default folder is the root folder, '~/'. If one folder is added, then the user can view and edit the CMS Roles that have access to pages in the folder.
- Common COR Edit Features.