User and Role Administration

Topics: Business Logic Layer, Controls
Jun 1, 2008 at 1:56 AM
How do you set a user's role so that they only have access to the "Add Entry" tab?
Jun 1, 2008 at 9:32 AM
Isn't the author role used for this?
Jun 1, 2008 at 11:56 AM
By default, the "Add Entry" page can be accessed by both Administrators and Editors role. All admin pages are accessed by Administrators role. Editors only can access the following admin pages: Add Entry, Blogroll, Categories, Pages, and Referrers. If you want the user to access only "Add Entry" page, you can configure the web.config inside the /admin/pages folder. For example you can delete authorizations for Editors role for all pages except "Add Entry" page. Then any members of Editors role will automatically be granted to access only that page, not the others.

Regards,
Agus Suhanto
http://suhanto.com
Jun 1, 2008 at 9:53 PM
Thank you BennyM for responding.

Thank you suhanto for responding.

suhanto, I made the changes you suggested. And you probably already know that it worked. Thank you again.


Jun 6, 2008 at 1:38 AM
Follow-Up...

The only options showing now for a non-administrator are "Add Entry", "Extensions" and "Change Password".

How do I hide the "Extension" tab from non-administrators?

Thanks in advance.
Coordinator
Jun 6, 2008 at 3:48 PM
Check if you have Web.config file in the ~/admin/Extension Manager folder. If not, create this file and copy there this content:

<?xml version="1.0"?>
<configuration>
  <location path="default.aspx">
    <system.web>
      <authorization>
        <allow roles="administrators"/>
        <deny users="*" />
      </authorization>
    </system.web>
  </location>
</configuration>
Jun 6, 2008 at 10:36 PM
Worked like a charm...

Thank you very much.