Security Roles List?

Question

0

Security Roles List?

Daniel Barr posted 7 Years Ago

Is there anywhere that shows the exact permissions that each default Security Role has? I'm setting up Rock for the first time...and trying to figure out which roles to assign to who...without a simple way of seeing exactly what each role does is a bit difficult...

0
- Daniel Barr replied 7 Years Ago
Thanks for that, that's what I was thinking about doing to test things out (with the test users), was just hoping for something I was missing before doing that. I'm loving Rock, and the documentation is awesome in so many ways...but this is one of those things that should really be listed somewhere in the admin guide :)
Edit Answer

Thanks for that, that's what I was thinking about doing to test things out (with the test users), was just hoping for something I was missing before doing that.  I'm loving Rock, and the documentation is awesome in so many ways...but this is one of those things that should really be listed somewhere in the admin guide :)
Thanks for that, that's what I was thinking about doing to test things out (with the test users), was just hoping for something I was missing before doing that.  I'm loving Rock, and the documentation is awesome in so many ways...but this is one of those things that should really be listed somewhere in the admin guide :)
Thanks for that, that's what I was thinking about doing to test things out (with the test users), was just hoping for something I was missing before doing that.  I'm loving Rock, and the documentation is awesome in so many ways...but this is one of those things that should really be listed somewhere in the admin guide :)
Save Cancel

Jim Michael · Accepted Answer · 2017-02-16T18:28-07:00

1

Jim Michael replied 7 Years Ago

There's no way to see everything a role has access to, unfortunately. You have to go to the "thing" and see what roles have rights to it, but it's not quite that simple because Rock (thankfully) uses inheritance liberally, to limit the need for explicit rights everywhere. I will say that the roles do pretty much what they say... your finance people will need the finance role. Your Data Integrity person (person in charge of merging duplicate records, etc) will need that role, most staff will need the Staff Members role, etc.

One thing that helped us a lot at the beginning was to create test logins and put those users in the various roles, then log in as them and see what we had access to. Pretty effective. Finally, you might find use in looking at the Admin | CMS Config | Page Map feature. There you will see a tree of your various Rock sites' pages structure, and if you click the "show auth" button it will show explicit allows (and denies) on various pages.

Edit Answer

<p>There's no way to see everything a role has access to, unfortunately. You have to go to the "thing" and see what roles have rights to it, but it's not quite that simple because Rock (thankfully) uses inheritance liberally, to limit the need for explicit rights everywhere. I will say that the roles do pretty much what they say... your finance people will need the finance role. Your Data Integrity person (person in charge of merging duplicate records, etc) will need that role, most staff will need the Staff Members role, etc.</p><p><br></p><p>One thing that helped us a lot at the beginning was to create test logins and put those users in the various roles, then log in as them and see what we had access to. Pretty effective. Finally, you might find use in looking at the Admin | CMS Config | Page Map feature. There you will see a tree of your various Rock sites' pages structure, and if you click the "show auth" button it will show explicit allows (and denies) on various pages.</p>

<p>There's no way to see everything a role has access to, unfortunately. You have to go to the "thing" and see what roles have rights to it, but it's not quite that simple because Rock (thankfully) uses inheritance liberally, to limit the need for explicit rights everywhere. I will say that the roles do pretty much what they say... your finance people will need the finance role. Your Data Integrity person (person in charge of merging duplicate records, etc) will need that role, most staff will need the Staff Members role, etc.</p><p><br></p><p>One thing that helped us a lot at the beginning was to create test logins and put those users in the various roles, then log in as them and see what we had access to. Pretty effective. Finally, you might find use in looking at the Admin | CMS Config | Page Map feature. There you will see a tree of your various Rock sites' pages structure, and if you click the "show auth" button it will show explicit allows (and denies) on various pages.</p>

Save Cancel

Question

0

Security Roles List?

1

0