Table of Contents
Permissions
Frontend
The frontend has no protection. If needed you may limit access in the webserver configuration.
Backend
The backend must be configured that it requires a login.
The user id of a logged in user is in a variable in the $_SERVER scope.
With acl rules you can define access.
Global access
The global access is managed in config/settings.php.
You can define access for all groups:
- admins - with full access
- managers - they can modify notifications in all groups
Group based access
On group level in the backend admin are the roles
- admins - they can modify their own group metadata
- managers - can edit the public notification of the group
Overview
| task \ role | global admin | global manager | group admin | group manager |
|---|---|---|---|---|
| Create a group | ✅ | |||
| Modify group | ✅ | ✅ | ||
| Delete group | ✅ | |||
| Add app admins | ✅ | ✅ | ||
| Add app manager | ✅ | ✅ | ||
| Edit notification | ✅ | ✅ | ✅ | ✅ |