Setting different access level to different users
Sitefinity User Roles and Permissions
Users need to go to the ‘Permissions’ page to manage permissions and access for users. This page can be found on the main menu toolbar under ‘Administration.’ Users can go to the relevant page by clicking on ‘Permissions’ in the options. Sitefinity users can choose either an ‘Allow’ or ‘Deny’ value for specific permissions or actions.
It is essential to understand that denying permission is the system’s default action. Therefore, if an administrator does not explicitly ‘Allow’ permission for a user, they will be denied automatically. If the administrator explicitly chooses both ‘Allow’ and ‘Deny’ on the same action, Sitefinity user roles and permissions will give preference to denying the action.
Additionally, role permissions take precedence over user permissions. Even if an administrator grants permission to a user for a particular action, the user cannot proceed unless the role permission allows it as well. The permissions that are denied to a role are also denied to every user with that role automatically.
Sitefinity CMS permissions are also inheritable. This hierarchical structure of inheritance used in Sitefinity CMS is also known as granular permissions. Assigning individual permissions to a user or a role allows Sitefinity CMS users to apply the same permissions to all of the user’s child items. Therefore, the child item can ‘inherit’ the user’s ‘Allow’ or ‘Deny’ permissions.
An inheriting child item will have to break the inheritance to get different permissions, but users can easily customize Sitefinity permission-based access controls for that. Through this, the permission of the parent item is cloned to the child item. The user can modify said permission locally afterward. Sitefinity users can also revert the broken permissions inheritance to set the permissions to the parent item’s default ones. This is done by clicking ‘Inherit permissions from parent’.