Use item type roles within a library

 

+

Search Tips   |   Advanced Search

 

 

Additive and subtractive methodology

We can assign roles to both a library, and the item types within a library using either an additive or subtractive methodology.

With an additive methodology, apply the User role to the entire library and deselect the propagation check-box. Then apply one of the following roles...

...to specific item types to grant additional access to specified users or groups.

With a subtractive methodology, apply the Manager or Administrator role to the entire library. Then apply one of the following roles...

...to specific item types and deselect the inheritance check-box. This reduces the access to different item types for specified users or groups.

 

Roles used by IWWCM

You assign users and groups to the following roles:

Roles Permissions per item type
User Users and groups assigned to this role can:

  • View items in a Web site or rendering portlet that they have been assigned read access to.

The simplest way to assign users to this role is to select any of the default user groups such as...

All Authenticated Portal Users

...or...

Anonymous Portal User

Users will still require "read" access to an item before it will be rendered in a Web site or rendering portlet.

A User cannot access the authoring portlet. They can only view rendered content.

Contributor Users and groups assigned to this role can:

  • View items in a Web site or rendering portlet that they have been assigned read access to.

  • View the item type section within the authoring portlet.

  • View the "All Items" section of the authoring portlet.

  • View items that they have been assigned read access to.

  • Approve items that they have been given approve access to within a workflow.

This role is the minimum access required to access the authoring portlet.

Editor Users and groups assigned to this role can:

  • View items in a Web site or rendering portlet that they have been assigned read access to.

  • View the item type section within the authoring portlet.

  • View the "All Items" section of the authoring portlet.

  • Create a new item.

  • View items that they have read access to.

  • Edit items that they have edit access to.

  • Delete items that they have delete access to.

  • Approve items that they have been given approve access to within a workflow.

Manager Users and groups assigned to these roles can:

  • View items in a Web site or rendering portlet that they have been assigned read access to.

  • View the item type section within the authoring portlet.

  • View the "All Items" section of the authoring portlet.

  • Create a new item.

  • View items that they have read access to.

  • Edit items that they have edit access to.

  • Delete items that they have delete access to.

  • Approve items that they have been given approve access to within a workflow.

  • Purge items.

Administrator Users and groups assigned to these roles can:

Delegator
Privileged User 		These roles have no access to Web Content Management items.

Although Manager and Administrator roles have the similar permissions per item type, if you assign an Administrator role to an entire library, we cannot then remove this role from any item type views. This is not true for a Manager role.

 

IBM WebSphere Portal Administrators

WebSphere Portal Administrators automatically have Administrator access to all item-types.

 

Assign roles to anonymous or authenticated users

When accessing a Web Content Management Web Site or Rendering Portlet, users login as either anonymous users, or authenticated portal users.

The following user and groups can be assigned roles in a library.

anonymous portal user Select this user to assign a role to anonymous users.
[all authenticated portal users] Select this group to assign a role to users that have been authenticated by Member Manager.
[all users] Select this group to assign a role to all users.

 

Parent Topic

Work with libraries

 

Parent Topic

Develop an access control strategy