Page access restriction

Access restriction is used to restrict access to a page and its sub-pages to certain users (or groups) of the site. Only these users will have access to the restricted pages.

Access limitation tool

To open the tool for limiting access to a page and its sub-pages, select a page in the sitemap and click on the button Restrict access button (tab Advanced).

This tool displays the current status of the access restriction on this page.

The tool displays :

  • users and/or groups authorized to access the page (green tick)
  • excluded users and/or groups, i.e. those without access rights (red cross)

The interface is identical to the general rights management interface described on the Assign rights page.

The decorator Restricted access decorator allows you to view pages with restricted access through the global tree structure.

Limiting access to sub-pages

By default, access limitation is applied to the page and its subpages. If a page does not define its own (positive) permissions, it inherits the access limitations of its parent page.
By default, a page always inherits the accesses of its parent pages.

A sub-page can define its own access restrictions (to limit access to a more restricted set of users):

  • if it defines its own positive accesses (authorized users or groups), then those of the parent page are ignored
  • if it defines its own negative accesses (excluded users or groups), those of the parent page are added to the list (inherited)

Example

  • The"My organization" page is accessible to 4 users and the "Agglo agents" group.

  • Restricting access to the"News" sub-page does not redefine its access, so by inheritance it too is restricted to the same users and groups.

  • Restricted access to the"Institution" sub-page excludes the "City Agents" group. Authorized users will be those authorized by the parent page , except for "City agents".

  • The visibility of the "Publication" sub-page is restricted to 2 users only.

Similarly, the mode of limiting access to all logged-in users also applies to subpages.

Site illustration

There are many different ways of thinking about site-side limited-access pages. It mainly depends on the implementation of your application and the behavior of your graphic charter.

For a non-authenticated user, links to a limited page can, depending on your graphic charter :

  • [Case 1] No longer displayed
  • [Case 2] Be displayed with an icon (padlock, ...) (case of the chart used in the demo version)
  • [Case 3] To be displayed normally

If an unauthenticated user accesses a restricted page (cases 2 and 3), the authentication method used to authenticate a site user is executed. This depends on your application settings: basic authentication, advanced form authentication, CAS, etc.

In the case of the demo application, a login form is displayed as shown below:

In case 1, the graphic charter proposes a login area for site users on most pages. Once authenticated, links to restricted pages will be displayed if access is authorized.

 

 

Back to top

User's manual