Access Permissions Reference

This page documents the permissions that core modules expose. These permissions are found under User Management » Access Control in the administration screen(s). The url will be /admin/user/access[/optional-role-id] in Drupal 5.

Please note that this page is only for core modules. See the child pages for documentation about access permissions for specific contributed modules.

Page In Progress
This page is a work in progress. If you want to help provide a description of core module permissions, please leave a comment on this issue, and they will be added to the page, or edit the page directly if you're on the documentation team.

block module

administer blocks

gives users access to the block configuration page, allowing them to modify setting for blocks, such as assigning a block to a region, changing it's weight, or restricting display to certain page(s). For more information about block configuration, see Block Configuration

use PHP for block visibility

allows the designated role to use php code to determine whether a block will be displayed or not when a page is loaded. This permission should only be given to fully trusted users. More info about PHP block visibility settings

filter module

administer filters

This allows a user access to the input format configuration pages. Users with this permission can also use all input formats on the site. This permission should only be given to fully trusted users.

menu module

administer menu

node module

access content

Allows the user to view content. This should be enabled for all users, unless you want a private site.

administer content types

Allows the user to edit and add content types at /admin/content/types. This permission should only be given to fully trusted users.

administer nodes

Allows the user to create, edit, and delete nodes of all types. This overrides all the create/edit own/edit options for specific content types below. This also exposes the 'Publishing options' section when editing nodes, allowing users to promote content to the front page, publish and unpublish, make sticky, and create new revisions.

create [TYPE] content

Allows the user to create content of this type. This permission exists for page and story and each additional content type defined on the site. Overridden by the 'administer nodes' permission.

edit own [TYPE] content

Allows the user to edit content of this type that they have created. This permission exists for page and story and each additional content type defined on the site. Overridden by the 'administer nodes' permission.

edit [TYPE] content

Allows the user to edit all content of this type. This permission exists for page and story and each additional content type defined on the site. Overridden by the 'administer nodes' permission.

revert revisions

view revisions

path module

administer url aliases

allows users the ability to administer the url aliases (modify, add, remove)

create url aliases

allows users to create url aliases

user module

access user profiles

Can see user profiles; users without this set don't see links on user names.

administer access control

Get the admin menu items Access control, Access rules, Roles added to navigation and able to make changes there. This permission should only be given to fully trusted users.

administer users

Get the admin menu item Users -- can list all users, activate accounts, but NOT set roles. This permission should only be given to fully trusted users.

change own username

what it says on the tin

system module

access administration pages

allows users access to the admin path

administer site configuration

allows users to access the site configuration area of the admin panel. This permission should only be given to fully trusted users.

select different theme

allows users to change the theme from their profile.

Contributed Modules

Below is a list of contributed modules for which Access Permissions documentation has been created. If you want to submit documentation for a contributed module, please create a child page and name it "[module-name] Access Permissions Reference".