Permissions for all content

In the Permissions application, you can find a permission matrix for controlling role permissions to all pages within the content tree (in the Pages application).

To configure permissions for all content:

  1. Open the Permissions application.
  2. In the first Permissions for drop-down list, choose Module.
  3. In the second drop-down list, choose Content.

The changes you make on the permission matrix apply immediately.

Permission matrix for pages

The following global permissions can be granted to particular roles:

Browse tree

Allows members of the role to view the page content tree in the Pages application (not necessarily the actual page content – that is determined by the Read permission). For users without this permission, the system blocks the entire Pages application.

Users need the Browse tree permission to perform page management actions via the On-site editing interface.

Read

Allows members of the role to access the Page tab and Design tab, and view Properties of pages in the content tree.

Users need Read permission to access the On-site editing interface.

Modify

Allows members of the role to make the following changes:

  • Edit content of pages on the Page tab and Form tab.
  • Move pages in the content tree.
  • Modify the majority of page properties with the exception of Security and Workflow properties.
    • To modify the Security properties, only the Modify permissions permission is required.
    • To modify the Workflow properties, only the Manage workflow permission is required.

Check in any page

Authorizes members of the role to perform the Check-in and Undo check-out actions on the Properties -> Versions tab.

Create

Allows members of the role to create pages of any page type in the content tree.

Delete

Allows members of the role to delete any page in the content tree.

Manage workflow

Allows members of the role to approve or reject any page at any workflow step.

Note that the Modify permission is not necessary for approving or rejecting pages.

Destroy

Allows members of the role to destroy pages, i.e., delete without the Undo option.

Modify permissions

Allows members of the role to manage page-level permissions of any page on the Properties -> Security tab.

Note that the Modify permission is not necessary for managing page-level permissions.

Submit for translation

Allows members of the role to create new language versions of pages using Translation services.