Drupal: .htaccess Access Deny
How-To »
Drupal: .htaccess Access Deny
August 21, 2014 – 7:59 am | No Comment

In this article I will tell how to forbid access to certain resources for some clients. The instructions will include descriptions of different directives.

Read the full story »
CSS Templates

Contain reviews and news about CSS Templates.

Freebies

Contain freebies such as icons, graphics, headers and images for your websites.

Fun Stuff

Contains other fun stuff for entertainment or interesting site showcase.

How-To

Contain technical elaborations on some specific workarounds or common tweak.

Joomla Templates

Contains reviews and news about Joomla templates.

Home » How-To

Access Policy for Your Drupal Site: Permissions

Submitted by on January 20, 2010 – 9:58 amNo Comment

In the previous article we have discussed user roles and even create a few ones. Let’s talk about how to grant the various permissions for them now.

New roles are not given any permission at all to begin with—this makes sense, because the last thing we want is to create a role only to find that it has the same permissions as the administrative user.

In order to work with permissions, click the User management > Permission item of the admin navigation menu. You should be presented with a screen much like the following:

clip_image002

This page lists all of the available permissions down the left-hand column and allows you to enable or disable that permission by checking or un-checking boxes in the relevant column. It is easy enough to see that one traverses the list, selecting those permissions required for each role. What is not so easy is actually determining what should and shouldn’t be enabled in the first place.

Notice too that the permissions given in the list on the left-hand side pertain to specific modules. This means that if we change the site’s setup by adding or removing modules, then we will also have to change the permissions on this page.

So, most times a module is added, you will need to ensure that the permissions are set as required for that module, because by default no permissions are granted.

How do we go about setting up the required permissions for some user? Look down the list of permissions shown on the Permission page and find options that are related to the created user role (i our example, ability to leave comments for authenticated users):

clip_image004

Click Save permissions button at the bottom of the page when done.

You can also set permissions for a single selected role. Just Click the Administer > User management > Roles item from the admin menu and then edit permissions link opposite the required role. You will then get to the Permissions page but for the selected role only:

clip_image005

Note: You can test enabled options to find out what new powers are made available. To do this, create a new user and then assign them to the required role. The following article will explain how to create new users and administer them properly.

Leave a comment!

Add your comment below, or trackback from your own site. You can also subscribe to these comments via RSS.

Be nice. Keep it clean. Stay on topic. No spam.

You can use these tags:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

This is a Gravatar-enabled weblog. To get your own globally-recognized-avatar, please register at Gravatar.