Contents

Introduction
What is New in This Sitefinity Version
Readers Guidelines
Installation
Core Concepts
Sitefinity in Visual Studio
Sitefinity Building Parts
Developing with Sitefinity
Designing with Sitefinity
Security
- Overview
- Users
- Authentication
- Authorization
- Permissions
  - Types of Permissions in Sitefinity
  - Page Permissions
- Spam Protection
How-to
API Reference

Types of Permissions in Sitefinity		Send comments on this topic.
See Also

Security > Permissions > Types of Permissions in Sitefinity

Glossary Item Box

Permissions are rights that define the type of actions a user is allowed to perform. A permission relates to a single action and is granted per role. For example, the role “Content Editors” could be granted “View” and “Edit” page permissions. There are three available values for a permission: Allow, Deny and Unset.

There are several types of permissions, defined by the objects they are related to:

Administrative Permissions - rights to manage users and roles and grant permissions to them. By default, for every new Sitefinity project, an unrestricted “Administrators” role is created and a user is added to it. Only the users that have an administrator role have administrator permissions.

A role is unrestricted when it is granted ultimate permissions. That is why the permission check boxes for it in the Admin part of Sitefinity are disabled.

Global Permissions - rights to access special tools that affect the content of the whole Web site. Global permissions are set per role.

A new global permission "CMSAccess" was included in version 3.1 of Sitefinity. If this permission is not set to Allow for a certain role, a user that belongs to that role will not be granted access to the administration of Sitefinity.

Modules Permissions - “Create”, “View”, “Edit”, “Delete” and “Change permissions” rights that are set per module. For example, the “News Writers” role will only have the "Create", "View" and "Edit" permissions for the News module. Permissions apply to the whole module.

Page Permissions - “Create”, “View”, “Edit”, “Delete”, as well as some workflow management permissions given per CMS page. These permissions are inherited over the page hierarchy. For more information, see Page Permissions

Live Pages Permissions - permissions that apply to the users that have a Public User role. These permissions are set if a page should be accessible by the members of a Public User role or if a secured page should be included in the navigation controls (for example, the RadTreeView and RadMenu controls).

In Sitefinity, all permissions are defined for actions in the administration part of Sitefinity. This is not valid only for two permissions - "View Page" and "Create Forum" (which apply for the live site of Sitefinity as well). If you grant a given role View permission for a CMS page, and “Deny anonymous access” for it, users from this role will still be able to access it (on the live site). [Subject to change] If you grant a role Create permission for the Forums module, and “Deny anonymous authors”, then users from this role will still be able to post replies on the live site.

Sitefinity CMS

See Also