Permissions

Permissions on Xpand Portal are set up separately for portal members (these permissions define access of portal member groups to certain portal pages or certain page features) and CMS users (these permissions define what actions can be performed by each CMS user group in CMS). 

Permissions for member groups (front end)

Xpand Portal is very flexible in terms of configuring permissions. Multiple pages features and actions can be configured to be accessible to only by certain member groups if necessary.

For each portal page, you can configure public access where you can restrict access to a certain page for specific member groups or remove protection entirely so that anyone could access it, even if the portal visitor is not registered as a portal member and not assigned to a member group.

In additional to public access settings, availability of certain features on portal pages or ability to perform certain actions is defined by permissions that can be configured in the settings of the corresponding page. These permissions are also configured per member group. Thus, when a portal member opens a portal page, availability of some of its elements and actions depends on whether those page elements or actions are allowed for the member group to which the portal member is assigned. This section describes how to set up permissions to define availability of page elements and actions per member group.

For certain page elements or actions, such as field visibility, general page settings, and toolbar commands, you can create several sets of permissions for each portal page to group them according to your business needs. For example, you can have one set of permissions for administrator and IT pro member groups and another set of permissions for a group of end user-related member groups, both active at the same time for the same page.

Page features that you can configure through member group permissions vary depending on the page type where you configure permissions:

Permissions for CMS user groups (back end)

What actions can be performed in the back end by CMS users for each portal page can also be restricted with the help of permissions that can be configured per CMS user group.