Security Setting Tweak

This forum is only for questions or discussions about working with the mojoPortal source code in Visual Studio, obtaining the source code from the repository, developing custom features, etc. If your question is not along these lines this is not the right forum. Please try to post your question in the appropriate forum.

Please do not post questions about design, CSS, or skinning here. Use the Help With Skins Forum for those questions.

This forum is for discussing mojoPortal development

This forum is only for questions or discussions about working with the mojoPortal source code in Visual Studio, obtaining the source code from the repository, developing custom features, etc. If your question is not along these lines this is not the right forum. Please try to post your question in the appropriate forum.

You can monitor commits to the repository from this page. We also recommend developers to subscribe to email notifications in the developer forum as occasionally important things are announced.

Before posting questions here you might want to review the developer documentation.

Do not post questions about design, CSS, or skinning here. Use the Help With Skins Forum for those questions.
2/22/2018 12:05:56 AM
Gravatar
Total Posts 32

Security Setting Tweak

Hello. It's me again. We are refining the Mojo system for use in our own launch, and have a slight tweak we are looking to make in the security settings.

In essence, we want our content admins to have the ability to edit content, but not module settings. Any of them.

I'm looking into the core code to see if there's a way to "split" the powers of content admins/editors, but I was wondering if there was a more prudent way to go about this?

Thanks.

2/25/2018 2:48:50 AM
Gravatar
Total Posts 63

Re: Security Setting Tweak

Have you tried creating a new role in the admin area and only add the (permissions to the role) for only editing content?

2/25/2018 3:14:13 AM
Gravatar
Total Posts 521
feet planted firmly on the ground

Re: Security Setting Tweak

And to clarify Allen's suggestion, in case it's not obvious, you need to go to Permissions ( /Admin/PermissionsMenu.aspx )  and add your new role to "Roles NOT allowed to edit feature instance settings". If you don't do that, the role will automatically gain permissions to edit settings when you grant permissions to edit content.

And this also means you may not need a new role; you might be able to use the default "Content Authors" role if you've not already removed/altered it for something else. 

2/26/2018 4:25:23 PM
Gravatar
Total Posts 32

Re: Security Setting Tweak

Thanks. I didn't even see that setting. Looks exactly what I need.

However, I'm running into a new issue. When testing this, I have to switch accounts. And the permissions for the site don't seem to be shifting. I still have the same powers despite being signed on as a different user. I have to close out the browser completely and re-log in for them to take effect. Is this a bug, or some cache setting?

2/28/2018 12:57:00 PM
Gravatar
Total Posts 521
feet planted firmly on the ground

Re: Security Setting Tweak

If you sign out and then in as a different user who is in different role(s) you should get correct permissions. If that is not happening you might have found a bug and should report how to replicate and what your System Information is ( /Admin/ServerInformation.aspx ).

But personally I tend to use multiple browsers for this kind of testing, e.g. log in as an admin in Chrome, and log in as users in Edge, Firefox, IE11, Opera etc. That way you don't have to keep logging in and out.