Permission management in Phonemos is role based (see Role based access control for groups or users). By default, Phonemos comes with the following roles:
Default site level roles
Role | Description |
|---|---|
Manage Site | Includes all site configuration permissions for a site administrator. |
Access | Includes only the login option for this site. Users without the access role on the site cannot login to the site. Having access on the site does not automatically imply access to any content except the landing page (see Landing page per site (URL) & custom URL). |
Default topic level roles
Role | Description |
|---|---|
Manage Topic | Includes all permissions for Edit Content plus all topic configuration functions. |
Edit Content | This includes View permissions and all permissions to add, edit and publish content. |
View | This role allows read only access to published content. |
Who can do What?
This table helps admins understand which default roles include which capabilities.
To define custom roles see Advanced permission management with customisable roles
Description | View | Edit | Manage | Site Access | Site Manage |
|---|---|---|---|---|---|
Can see object/content (subject to draft rules). | X | X | X | X | X |
Can edit content. |
| X | X |
| X |
Can publish draft content. |
| X | X |
|
|
Can move content to deleted state. |
| X | X |
| X |
Can restore own deleted content. |
| X | X |
| X |
Can restore any deleted content. |
|
| X |
| X |
Can create child objects/pages. |
| X | X |
| X |
Can view metadata records. | X | X | X |
| X |
Can edit metadata values. |
| X | X |
| X |
Can define metadata schema/record definitions. |
|
| X |
| X |
Can manage custom metadata fields. |
|
| X |
| X |
Can view discussions/comments. | X | X | X |
| X |
Can create new discussion threads. |
| X | X |
| X |
Can reply in discussions. |
| X | X |
| X |
Can view tasks. | X | X | X |
| X |
Can create/update tasks. |
| X | X |
| X |
Can export full object tree. |
| X | X |
|
|
Can run custom export. |
| X | X |
|
|
Can view permission assignments. |
|
| X |
| X |
Can change permission assignments. |
|
| X |
| X |
Can edit language configuration. |
|
| X |
| X |
Can configure topic settings. |
|
| X |
| X |
Can publish/manage topic-level publication state. |
|
| X |
| X |
Can manage zones in topics. |
|
| X |
|
|
Can configure external data sources on topic. |
|
| X |
| X |
Can view record sets. | X | X | X |
|
|
Can edit record set data. |
| X | X |
|
|
Can configure record set structure/settings. |
| X | X |
|
|
Can configure global data domain settings. |
|
|
|
| X |
Can configure site theme. |
|
|
|
| X |
Can configure site navigation/menu. |
|
|
|
| X |
Can run site-level import actions. |
|
|
|
| X |
Can manage allowed topic types. |
|
|
|
| X |
Can edit export templates. |
|
|
|
| X |