• Quick Start
  • Download and Install
  • Create a Site
  • Editing your Site
    • Edit Mode GUI
  • Manipulate Content
    • Edit Existing Content
    • Create New Content
    • Move Content in a Page
  • Preview and Publish your Work
  • Move Content Between Pages
  • Delete Content
  • Use a Content item in many places at the same time
  • Control the Rights
  • Managing Sites
  • More Detailed Publication
  • Going Further With Interactive Features
    • Insert a Google Map
    • Add a Poll

Control the Rights

Management of roles and rights is a very vast topic. We will perform a basic operation during this Quick Start Guide in order to demonstrate the principles. Let’s say the “Publications” page and all subpages should not be visible for visitors, and we want to restrict them for registered users.

Edit the “Publications” page by right-clicking to select it and choose the “Edit” item in the menu.

In the engine that appears, go to the tab “Live roles” tab. The tab looks like this:

Individual users  and groups  appear in the first column.

Roles appear at the top of the other columns.

At each intersection when a checkbox is checked it means that the user/group has that particular role for the current item, and by default on all of its sub-items.

A role defines a set of coherent permissions.

The “Live roles” tab display roles that have an impact on the live workspace only (and therefore does not impact the editing of the content, but on browsing it).

There are 2 interesting lines here:

• “Guest user”: a generic user, that represents any anonymous visitor browsing the website in Live Mode, i.e. people that are not recognized by the system.

• “Users”: this group contains all registered users within Jahia. So that when you grant permissions to this group all registered users will have the permissions activated.

The first role “reader” is very simple as it defines only one permission - the ability to read (view) content.

Logically, to restrict the section to simple visitors, but keep access rights to all the registered users, you can uncheck the role “reader” for the user “Guest user”.

Role changes are instantly propagated, so that as soon as the engine is saved, all anonymous visitors (non-registred users) will no longer see the Publications pages nor any of its sub-pages/contents.

In Jahia, by default all permissions are inherited by all sub-items, so when removing read rights to the visitors on the “Publications” page, all sub-content will also be hidden. This inheritance mechanism allows Administrators to set-up very fast and with high efficiently the rights. The inheritance can be broken at any level if desired, so it is possible to remove some permissions on a page or content and restore the same permissions on sub-content, if necessary.

The permissions can be controlled on any content item. The operation we have made to a page may be executed on a tiny content item inside a page, so the page will appear for all users except that specific content.

If you validate the roles changes described above, publish the site, then log out, you will see that the “Publications” page and all sub-pages are not visible anymore. If you login with any other user (try root or jenifer/password), then the page will reappear.

We will not explain the “Edit roles” tab in details in the Quick Start Guide; however, you can click on the “Edit roles” tab to see that the screen is similar to “Live roles”, but the proposed roles are different (contributor, editor, reviewer, etc.) Each role provides different privileges and will enable users or groups to perform various actions.

For instance, on the Publications page “jenifer” is a reviewer, meaning that during a workflow process she can validate that page and accept its publication. John has the translator role, so he will be able to edit existing content in various languages (translate), but not create new content.