Hardware Reference
In-Depth Information
Can view
published
media
Can upload
new media
Grants the
ability to
upload new
media
Grants
access to
edit site
content
Grants
access to
the admin
panel
Editors
Admins
Let's take a look at this table more closely:
•
Anonymous
people can view media, but we don't want them to upload new
content, and most of all, they shouldn't be able to grant anything.
Even though this is not about the protection of jewels, you don't
want anyone to be able to set rights. This is obviously a security
breach: anyone can grant other people the right to upload.
•
Logged-in users
, on the contrary, don't have enough privileges; they should
at least be able to view and submit content
•
Editors
and
Admins
do their job correctly, so leave those as defined
We can see here that this doesn't fit our philosophy, so let's change the group settings
to those used for our house. Let's bring in a few modifications:
Can view
published
media
Can upload
new media
Grants the
ability to
upload new
media
Grants
access to
edit site
content
Grants
access to
the admin
panel
Everyone
(including
guests)
Logged-in
users
Editors
Admins
What we did is we assigned different roles to different people.
Editors
will be able to
set upload and edit accesses, while
Admins
are allowed to play all the roles.
