Default Security Rights for New Publications
up vote
4
down vote
favorite
When you create a new publication, Tridion applies some sensible default rights for the built in groups like Editor and Chief Editor. We built our security model on top of these default groups, so when we create new publications, the only configuration we have to do with regards to authorization is to alter the group scope to include the new publications.
The exception to this seems to be rights for optional modules like Translation Manager. It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
Looking at the docs, this does not seem possible, but I thought I would check anyway: Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this? We are using SDL Web Cloud (8.6)
user-rights
asked 3 hours ago
Will Price
12.9k1558
add a comment |
up vote
4
down vote
favorite
When you create a new publication, Tridion applies some sensible default rights for the built in groups like Editor and Chief Editor. We built our security model on top of these default groups, so when we create new publications, the only configuration we have to do with regards to authorization is to alter the group scope to include the new publications.
The exception to this seems to be rights for optional modules like Translation Manager. It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
Looking at the docs, this does not seem possible, but I thought I would check anyway: Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this? We are using SDL Web Cloud (8.6)
user-rights
asked 3 hours ago
Will Price
12.9k1558
add a comment |
up vote
4
down vote
favorite
up vote
4
down vote
favorite
When you create a new publication, Tridion applies some sensible default rights for the built in groups like Editor and Chief Editor. We built our security model on top of these default groups, so when we create new publications, the only configuration we have to do with regards to authorization is to alter the group scope to include the new publications.
The exception to this seems to be rights for optional modules like Translation Manager. It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
Looking at the docs, this does not seem possible, but I thought I would check anyway: Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this? We are using SDL Web Cloud (8.6)
user-rights
asked 3 hours ago
Will Price
12.9k1558
When you create a new publication, Tridion applies some sensible default rights for the built in groups like Editor and Chief Editor. We built our security model on top of these default groups, so when we create new publications, the only configuration we have to do with regards to authorization is to alter the group scope to include the new publications.
The exception to this seems to be rights for optional modules like Translation Manager. It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
Looking at the docs, this does not seem possible, but I thought I would check anyway: Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this? We are using SDL Web Cloud (8.6)
user-rights
user-rights
asked 3 hours ago
Will Price
12.9k1558
asked 3 hours ago
Will Price
12.9k1558
asked 3 hours ago
Will Price
12.9k1558
asked 3 hours ago
Will Price
12.9k1558
asked 3 hours ago
Will Price
12.9k1558
12.9k1558
add a comment |
add a comment |
2 Answers
2
active
oldest
votes
up vote
1
down vote
Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this?
Not that I know of.
It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
You could utilize the Event System system to set these right. The way to do it is through the Repository.AccessControlList property.
answered 2 hours ago
Atila Sos
2,4691720
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
add a comment |
up vote
0
down vote
In the past, we worked with a client on a simple GUI to select 'default' and then options to override them (if you were a member of a specific user group) - all interacting through the Core Service obviously.
You'll not be far wrong looking at the Powershell modules as a starter.
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
add a comment |
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
1
down vote
Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this?
Not that I know of.
It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
You could utilize the Event System system to set these right. The way to do it is through the Repository.AccessControlList property.
answered 2 hours ago
Atila Sos
2,4691720
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
add a comment |
up vote
1
down vote
Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this?
Not that I know of.
It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
You could utilize the Event System system to set these right. The way to do it is through the Repository.AccessControlList property.
answered 2 hours ago
Atila Sos
2,4691720
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
add a comment |
up vote
1
down vote
up vote
1
down vote
Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this?
Not that I know of.
It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
You could utilize the Event System system to set these right. The way to do it is through the Repository.AccessControlList property.
answered 2 hours ago
Atila Sos
2,4691720
Is there some way to also define defaults for these additional rights which come from optional modules so we don't have to keep doing this?
Not that I know of.
It seems like we always have to manually add this right to the required groups for each new publication, which is is bit of a pain.
You could utilize the Event System system to set these right. The way to do it is through the Repository.AccessControlList property.
answered 2 hours ago
Atila Sos
2,4691720
answered 2 hours ago
Atila Sos
2,4691720
answered 2 hours ago
Atila Sos
2,4691720
answered 2 hours ago
Atila Sos
2,4691720
2,4691720
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
add a comment |
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Yep, I agree with you probably having to do this through the Events System. Rights for the additional modules (Translation, etc.) tends to be done through App Data on the Publication, rather than the normal Publication properties though, so you'll have to do some XML creation/manipulation.
– Jonathan Williams
43 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
Good point on the App Data, totally slipped my mind (I remember schema fields' translatable options also being set in App Data)
– Atila Sos
32 mins ago
add a comment |
up vote
0
down vote
In the past, we worked with a client on a simple GUI to select 'default' and then options to override them (if you were a member of a specific user group) - all interacting through the Core Service obviously.
You'll not be far wrong looking at the Powershell modules as a starter.
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
add a comment |
up vote
0
down vote
In the past, we worked with a client on a simple GUI to select 'default' and then options to override them (if you were a member of a specific user group) - all interacting through the Core Service obviously.
You'll not be far wrong looking at the Powershell modules as a starter.
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
add a comment |
up vote
0
down vote
up vote
0
down vote
In the past, we worked with a client on a simple GUI to select 'default' and then options to override them (if you were a member of a specific user group) - all interacting through the Core Service obviously.
You'll not be far wrong looking at the Powershell modules as a starter.
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
In the past, we worked with a client on a simple GUI to select 'default' and then options to override them (if you were a member of a specific user group) - all interacting through the Core Service obviously.
You'll not be far wrong looking at the Powershell modules as a starter.
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
answered 2 hours ago
Dylan .. Mark Saunders
7,1581132
7,1581132
add a comment |
add a comment |
Thanks for contributing an answer to Tridion Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2ftridion.stackexchange.com%2fquestions%2f19576%2fdefault-security-rights-for-new-publications%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
