I currently have a Joomla site that has 5 different departments of people accessing the backend content. Basically, everyone's looking and poking at other departments contents. So how would I set a different account for everyone and allow them to only modify their own content? E.G.
The salt department can post whatever articles they want, but they cannot modify the sugar department's article.
Does Joomla have this kind of ability or any extensions out there?
That is pretty simple on Joomla 3 system.
Firstly, you create 5 different User Groups in Joomla under Users menu.
Go to Content > Article Manager > click Options button on the top right side > Permissions Tab
In the Permissions Tab, click on each User Group and you have tons of permission to tweak such as: Create, Edit, Edit Own, ...
Hope it helps.
If you haven't configured it yet, the key term to look for is ACL (Access Control List).
Basically you need to create 5 users groups (which are not Super Users).
Here is an article to get you started:
Joomla ACL: Configuring back-end ACL
Related
I have set up user group called "Article Editor" with a parent of Administrator. Within that group I have a user of "Agent" and assigned them to the "Article Editor" User group.
I have a blog page in which when they are logged in they can create an article (only with a particular category called blog) and they can edit all articles, however, I cannot get any option anywhere to enable them to delete any article they have created within the "blog" category. I have gone into the article manage and made sure the permissions are set to enable Edit, Delete and Create.
Any ideas how I allow the user to log into the front end and have the option to delete? Ive tried everything I can think of an am going around in circles now.
The Delete permission should be given only to trusted administrators (with intended access to the back-end) and can be performed in the back-end.
From your description, you don't want this group of users to have access in the back-end and even more have delete permissions, as these users if they log-in to the backend they will be able to delete many things.
These users should be able to edit state (publish/unpublish) their own articles.
So, concluding:
Give this group only front-end access, with permissions similar to the author (core joomla group) with the addition of edit state.
So they will be able to create and publish/unpublish (**addition- or trashing) their articles.
I have a Joomla website and there are two sections to the site. One section is for the public and the other is for retailers which have to be approved. What I need is to create a group of users which are the only ones who can access the retailer section of the site. These users don't get any editing/publishing/administrator roles; they're just registered users with special access. I've tried several extensions but had no luck with it. Does anyone know how this can be done?
You don't need groups: you just have to make sure to disable the "self registration" option (from admin control panel: Global Configuration -> system -> Allow User Registration = No)
Also, you'll have to configure each article/menu to have Access Level "public"/"registered".
You can register new users from the admin control panel and only they will be able to view "registered" content.
Read this :-
http://docs.joomla.org/Access_Control_List/1.6-2.5/Tutorial
http://extensions.joomla.org/extensions/access-a-security/site-access/backend-a-full-access-control/9040
Search about access control list.
I would like to create some pages related to a member account in umbraco 4.
In asp.net webforms, an account folder is created and in it are the account related pages, such as Login.aspx, ForgotPassword.aspx, etc...
Now, these pages are not actual content pages, but are more of the adminitrative type.
I've created user controls for the login, register, etc.
Should I create a document type in umbraco for each page type, and put the respective user control in each template ? what is the recommended way to do this in umbraco ?
On the content manager, just right click on the page or node you want to protect, right click on and select "Public Access".
In there you can apply permissions to individual users and/or roled based. The Roled based one will require for you to have "Member Groups".
That is it. All the security is kept on the "\App_Data\access.config" file; you can review it for more details on how they are achieving this.
hth,
-covo
I am looking for a module/extension, or something that can help me to
make a page/item that only one specific user registered can see.
I would like also create a space dedicated to this user, where i can publish there pages and aticles.
Maybe using php and the variable that contains the username and an iframe, but I dont know how to doit.
Thank for the help
GMAccess is a Joomla! component that makes managing groups and access permissions easy, you will be able to create a special group and add your user (via Joomla's user management) to it and manage which pages can be viewed by that group.
Does it affect the way joomla authenticate users if I add a custom user groups in the Joomla 1.5.15 and does it make it less secure?
I'm planning to add a custom group using the table jos_core_acl_aro_groups as described at http://docs.joomla.org/Custom_user_groups.
But someone told me that if I add a new user group and the group_id is greater than 25 (this is the ID of the Super Administrator), that new group will have the same access as the super admin in the default joomla core files without changing anything just the additional user group. Is this true?
Don't you have a local instsall of Joomla to try this?
Anyways, it's not true because it can't be, why should the group_id define the access rights? That would be a terrible ACL implementation. But please try it, before you actually use it live.
In Joomla 1.5 you can make user groups but they will have one of the existing role patterns. In Joomla 1.6 (alpha) there will be full flexibility in defining your groups, roles and granular ownership settings for each article, module, etc.
There are several extension you can find at:
http://extensions.joomla.org/extensions/access-a-security
Which enhance the core ACL functions. Give them a look and you'll probably find the solution without hacking the core files.