Roles¶
To give users an access to your website you need to assign them roles in the Admin panel.
Each role consists of:
Policies
Policies are the rules that give users access to different function in a module. You can restrict what user can do with limitations. The available limitations depend on the chosen policy. When policy has more than one limitation, all of them have to apply. See example use case.
Note
Limitation specifies what a user can do, not what they can't do.
A Location limitation, for example, gives the user access to content with a specific location, not prohibits it.
For more information, see Limitation reference.
Assignments
After you created all policies, you can assign the role to users and/or user groups with possible additional limitations. Every user or user group can have multiple roles. A user can also belong to many groups, for example, Administrators, Editors, Subscribers.
Best practice is to avoid assigning roles to users directly. Model your content (for example, content types, sections, or locations) in a way that can be accessed by generic roles. That way system is be more secure and easier to manage. This approach also improves performance. Role assignments and policies are taken into account during search/load queries.
For more information, see Permissions overview and Permission use cases.