How to control access to a section page?
Yacs is used to support large and dynamic web sites and, as such, it provides a rich set of options to manage access control rules. This paper documents these options and gives some practical examples that you can use out-of-the-box. Additional options can be used to tune yacs behavior to your very particular needs, yet these are not documented here (e.g., draft-review-publish workflow).
Additionally, yacs provides a simple way to limit contributions by locking sections. When you lock a public section or a restricted section it becomes read-only to ordinary site members. And when you lock a hidden section, its editors cannot update it anymore.
Site associates have always read - and write - access to sections, and locking has no effect on them. [title]Access rules[/title] The following table describes allowed operations on a section depending on its settings and on surfer role.
Section |
Site |
Section |
Site |
Section |
Site |
Any |
Public access |
Read |
Read |
Read |
Read |
Read |
Read |
Public access |
Read |
Read |
Read |
Read |
Read |
Read |
Restricted access |
Read |
Read |
Read |
Read |
Read |
X |
Restricted access |
Read |
Read |
Read |
Read |
Read |
X |
Hidden section |
Read |
Read |
X |
Read |
X |
X |
Hidden section |
Read |
Read |
X |
Read |
X |
X |
[title]Common requirements, and related solutions[/title] You may find following examples quite useful if you are still wondering how to proceed in your specific case.
Section settings |
Typical usage |
Public access |
All community members are encouraged to read and to react. Authenticated surfers can contribute and post new pages. Use options auto_publish, anonymous_edit and members_edit to tune settings. |
Public access |
Publication is limited to section editors, and community members can react. Example: blog from the marketing department |
Restricted access |
Surfers have to be authenticated to get access and to contribute. You can limit self-registration, or even create a closed group of users, to better manage confidentiality. |
Restricted access |
All readers have to be authenticated, and only selected editors can add new pages. |
Hidden section |
Only selected persons can interact here. |
Hidden section |
The natural evolution of a projet space that has reached its end. |