Create a page with role-based permissions
traceelements - November 10, 2009 - 06:48
I'm trying to figure out the best way to create a custom administrative page for my clients with links to the most commonly used admin functions. What is the best way to create a secure page that can only be accessed by certain roles?
maybe just set up a menu block
What I have been doing for my website owners is creating a menu just for them with the links they need.
at- administer > Site building > Menus ,, Add menu
Since menus are blocks,, at- administer > Site building > Blocks
Use the 'configure' link on the custom menu block to set the roles allowed to see it, the position, and set the pages or paths where they will need to see it.
And, then set permissions for the the role to do the operations that they are allowed to do.
at- administer > user management > permissions
i should add
This is only one of many ways.. Some people just use the navigation menu and set permissions for the functions they can do.. and then the 'administer' menu link will take them to the page with the different links on it.
Thank you, dbeall. I have
Thank you, dbeall. I have used your first listed method in the past. The second method you listed occurred to me, but I'm worried about people (that I don't want to) being able to access the page with the links on it. I mean, accessing it directly, like if it showed up in a Google search. I need to figure out a way to make the page viewable only by certain roles.
permissions should do it
only people that are logged in and have permissions can view the page and/or the functions. Google search is for anonymous pages since google is not logged in.
How does one set permissions
How does one set permissions to view a certain page?
The tac lite module is great
The tac lite module is great for this. You create a taxonomy of your roles, then you attach that taxonomy to whatever content type you want. You then set the tac lite settings to allow for viewing (and creation and deletion if you want) for the role/taxonomy terms. Then when creating a page, you choose the role name from the taxonomy list, and automatically people in that role are the only ones who can view that page. It takes a little bit to figure out how to set it up, but once you do, it makes site wide permissions very easy to set.