PostNuke Help |
||
|---|---|---|
Previous |
Next |
|
The order in which permissions are set in PostNuke is very important. The order in which permission rules are applied is from the top to the bottom of the permissions table. When checking for permissions the authorisation system will allow access to a part of the system for the first matching permission that it finds, and this must be taken in to account when setting up a permissions sequence.
This can be illustrated by an example where a user is in two groups, one of which is allowed access to a Component/Instance while the other isn't. If the permissions for the group which are not allowed access to the Component/Instance are higher in the permissions table than the one which is, the user will not be allowed to access it. However, if the order of the two group permissions in the table were reversed, the user would be allowed access.
User permissions are considered to explicitly override group permissions. If a group and a user permission are both found for an authorisation attempt, the permissions system will return the user permission in preference to the group permission.
Previous |
Next |