From a84c04af198a7b54d53045cb3443e303e7840674 Mon Sep 17 00:00:00 2001 From: Cynthia Kiser Date: Sun, 11 Apr 2021 23:56:00 -0700 Subject: [PATCH] Document add, change, delete permissions when managing permissions --- .../documents_images_snippets/collections.rst | 4 ++-- docs/topics/permissions.rst | 12 +++++++++++- 2 files changed, 13 insertions(+), 3 deletions(-) diff --git a/docs/editor_manual/documents_images_snippets/collections.rst b/docs/editor_manual/documents_images_snippets/collections.rst index f8387a5d00..c3ad4d569f 100644 --- a/docs/editor_manual/documents_images_snippets/collections.rst +++ b/docs/editor_manual/documents_images_snippets/collections.rst @@ -1,7 +1,7 @@ Collections ~~~~~~~~~~~ -Access to specific sets of images and documents can be controlled by setting up ‘collections’. By default all images and documents belong to the ‘root’ collection, but new collections can be created through the **Settings -> Collections** area of the admin interface. +Access to specific sets of images and documents can be controlled by setting up ‘collections’. By default all images and documents belong to the ‘root’ collection, but users with appropriate permissions can create new collections through the **Settings -> Collections** area of the admin interface. .. image:: ../../_static/images/collections_list.png @@ -37,4 +37,4 @@ ________________ .. image:: ../../_static/images/collections_privacy_overlay.png .. Note:: - Permissions set on ‘root’ apply to all collections, so a user with ‘edit’ permission for images on root can edit all images; permissions set on other collections apply to that collection only. + Permissions set on a collection apply to that collection and all collections below it in the hierarchy. So if you make the 'root' collection private, all documents on the site will be private. diff --git a/docs/topics/permissions.rst b/docs/topics/permissions.rst index 5823d4a348..90decb5f01 100644 --- a/docs/topics/permissions.rst +++ b/docs/topics/permissions.rst @@ -41,10 +41,20 @@ Image / document permissions The permission rules for images and documents work on a similar basis to pages. Images and documents are considered to be 'owned' by the user who uploaded them; a user with 'add' permission also has the ability to edit items they own; and deletion is considered equivalent to editing rather than having a specific permission type. -Access to specific sets of images and documents can be controlled by setting up *collections*. By default all images and documents belong to the 'root' collection, but new collections can be created through the Settings -> Collections area of the admin interface. Permissions set on 'root' apply to all collections, so a user with 'edit' permission for images on root can edit all images; permissions set on other collections apply to that collection only. +Access to specific sets of images and documents can be controlled by setting up *collections*. By default all images and documents belong to the 'root' collection, but users with appropriate permissions can create new collections the Settings -> Collections area of the admin interface. Permissions set on 'root' apply to all collections, so a user with 'edit' permission for images in the root collection can edit all images; permissions set on other collections only apply to that collection and any of its sub-collections. The 'choose' permission for images and documents determines which collections are visible within the chooser interface used to select images and document links for insertion into pages (and other models, such as snippets). Typically, all users are granted choose permission for all collections, allowing them to use any uploaded image or document on pages they create, but this permission can be limited to allow creating collections that are only available for use by specific groups. +.. _collection_management_permissions: + +Collection management permissions +--------------------------------- + +Permission for managing collections themselves can be attached at any point in the collection tree. The available collection management permissions are as follows: + +* **Add** - grants the ability to create new collections underneath this collection. +* **Edit** - grants the ability to edit the name of the collection, change its location in the collection tree, and to change the privacy settings for documents within this collection. +* **Delete** - grants the ability to delete collections that were added below this collection. *Note:* a collection must be empty before it can be deleted. Displaying custom permissions in the admin ------------------------------------------