Difference between revisions of "Access Control List"

From Joomla! Documentation

(clarifying this is 1.5 only)
(Added links to Joomla Magazine articles.)
(30 intermediate revisions by 9 users not shown)
Line 1: Line 1:
== ACL for publishing workflow in Joomla! 1.5==
+
<noinclude><languages /></noinclude>
 +
<translate>
 +
<!--T:1-->
 +
{{Chunk:Access Control List/en}}
 +
</translate>
 +
<noinclude>
 +
<translate>
 +
==Further reading==
 +
* [http://magazine.joomla.org/issues/issue-aug-2012/item/825-A-Case-for-Role-Based-ACL A Case for Role-based ACL]
 +
* [http://magazine.joomla.org/issues/issue-sept-2012/item/856-implementing-role-based-acl Implementing Role-based ACL]
 +
* [http://magazine.joomla.org/issues/issue-mar-2013/item/1138-adding-access-control-through-overrides Adding Access Control Through Overrides]
  
There are several different kinds of users in Joomla and each has a set of permissions granted to them:
+
==Versions== <!--T:2-->
  
'''Guests''' - Anonymous users of the website, no special rights.
+
<!--T:3-->
 +
* [[S:MyLanguage/J3.2:Access_Control_List|Access Control List]] {{JVer|3.x}}
 +
* [[S:MyLanguage/J2.5:Access_Control_List|Access Control List]] {{JVer|2.5}}
  
'''Registered Users''' - Normal visitors who register.
+
===Tutorials=== <!--T:4-->
  
'''Authors'''- Can submit content for approval in the front end only. Can edit their own content once published. A publisher or higher must approve new content before it goes live.
+
<!--T:5-->
 
+
* [[S:MyLanguage/J3.2:Access_Control_List_Tutorial|Access Control List Tutorial]] {{JVer|3.x}}
'''Editors''' - Can submit or edit all existing content, front end only. A publisher or higher must approve new pages before they go live, updates to existing content go live immediately.
+
* [[S:MyLanguage/J2.5:Access_Control_List_Tutorial|Access Control List Tutorial]] {{JVer|2.5}}
 
+
</translate>
'''Publishers''' - Can publish plus do any of the above, front end only.
+
</noinclude>
 
+
<translate>
'''Managers, Admins and Super Admins''' - All of the above plus can log into the back end w/increasing rights.
+
<!--T:6-->
 
+
<noinclude>[[Category:Landing Pages]][[Category:Access Control]] [[Category:Glossary]][[Category:Access Management]][[Category:References]]</noinclude></translate>
After installation, Joomla starts out with one super administrator. To add or edit new users manually, you must be at least a manager. To create admins, you must be a Super Admin.
 
 
 
'''TIP.''' For a small organization with one web master, much of this may be unnecessary. But even if you choose not to use a publishing workflow, having a publisher or manager user is a nice way to simplify the options for less experienced users.
 
 
 
== ACL for displaying content ==
 
 
 
Aside from front end and back end permissions, you may also use ACL to display certain content to certain visitors. Currently there are only three choices for using ACL this way. They are ''Public'', ''Registered'', and ''Special'' (which stands for Authors and above). You can assign the access level to any menu item, article or module in the back end. The default is ''Public'', but by choosing ''Registered'' or ''Special'', the item will only appear to that user group and above.
 
 
 
'''TIP''' ''Special'' ACL is used for the User Menu items in the default sample content. This allows for links such as "submit article" to be only visible for author users and above.
 
 
'''TIP''' You can use ''Registered'' ACL as an simple way to create member’s-only content.
 
 
 
'''TIP''' You can safely experiment on a live site by using access levels. Simply assign something (such as a new menu item and page) to the ''Special'' access level and publish it. Then only users who are author and above will ever see it. (Don’t forget to log in to the front end and changing the item back to ''Public'' so that it is visible to everyone.)
 
 
 
After installation, Joomla starts out with one Super Administrator. To add or edit users, you must be at least a manager. To create admins, you must be a Super Admin. For a small organization with one web master, much of this may be unnecessary. But even if you don’t use a publishing workflow, having a publisher or manager user is a nice way to simplify the options for less experienced users.
 
 
 
== Registering and ACL ==
 
 
 
If someone registers at your site, a new user is created automatically. Normally these new users will become Registered Users, however you may choose your preferred access level in Joomla's global configuration.
 
<noinclude>[[Category:Landing Pages]]</noinclude>
 

Revision as of 15:44, 5 April 2014

Other languages:
Bahasa Indonesia • ‎Deutsch • ‎English • ‎Kiswahili • ‎Nederlands • ‎Nederlands (informeel)‎ • ‎Türkçe • ‎català • ‎dansk • ‎eesti • ‎español • ‎français • ‎italiano • ‎magyar • ‎polski • ‎português • ‎português do Brasil • ‎română • ‎Ελληνικά • ‎български • ‎русский • ‎العربية • ‎فارسی • ‎हिन्दी • ‎অসমীয়া • ‎বাংলা • ‎中文(中国大陆)‎ • ‎中文(台灣)‎ • ‎日本語

Access Control List or ACL is according to the Wikipedia definition, “...ACL specifies which users or system processes are granted access to objects, as well as what operations are allowed to be performed on given objects.” In the case of Joomla there are two separate aspects to its Access Control List which site administrators can control:

  • Which users can gain access to what parts of the website? For example, will a given menu choice be visible for a given user? A registered user can view, but the public at large cannot. Perhaps the menu choice is hidden from all except an Editor user and higher.
  • What operations (or actions) can a user perform on any given object? For example, can a user listed as an "Editor" submit an article or only edit an existing article. The ACL settings could allow submitting and editing, or allow a change an article's category, add tags or any combination.

The implementation of ACL in Joomla was substantially changed in the Joomla! 2.5 series which allowed for more flexibility in groups and permissions.


Further reading[edit]

Versions[edit]

Tutorials[edit]