Joomla 1.6 ACL - J and Beyond 2011 #jab11
Upcoming SlideShare
Loading in...5
×
 

Joomla 1.6 ACL - J and Beyond 2011 #jab11

on

  • 2,789 views

Joomla 1.6 ACL explained by Sander Potjer during J and Beyond 2011. More info about ACL Manager for Joomla 1.6 on http://www.aclmanager.net

Joomla 1.6 ACL explained by Sander Potjer during J and Beyond 2011. More info about ACL Manager for Joomla 1.6 on http://www.aclmanager.net

Statistics

Views

Total Views
2,789
Views on SlideShare
2,760
Embed Views
29

Actions

Likes
2
Downloads
50
Comments
1

5 Embeds 29

http://www.aclmanager.net 24
http://www.techgig.com 2
http://us-w1.rockmelt.com 1
http://www.onlydoo.com 1
http://translate.googleusercontent.com 1

Accessibility

Categories

Upload Details

Uploaded via as Adobe PDF

Usage Rights

CC Attribution-NonCommercial-ShareAlike LicenseCC Attribution-NonCommercial-ShareAlike LicenseCC Attribution-NonCommercial-ShareAlike License

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
  • Lord, it would be nice to read to be able to read these slides. Even with my glasses on the sidebars take up too much room and the slide typeface is blurred and largely unreadable.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment

Joomla 1.6 ACL - J and Beyond 2011 #jab11 Joomla 1.6 ACL - J and Beyond 2011 #jab11 Presentation Transcript

  • Joomla! 1.6 ACL Sander Potjer @sanderpotjermaandag 9 mei 2011
  • Joomla! 1.6 ACL Sander Potjer • Co-founder of JoomlaCommunity.eu • Organizer Joomla!Days Netherlands • Organizer Joomla! User Groups in The Netherlands • Company: Sander Potjer Webdesign • Yireo/Jira ICT • Student Architecturemaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla! 1.6 ACLmaandag 9 mei 2011
  • Joomla! 1.6 ACL It took a while... DrupalCon, October 2005 Johan Janssens• http://www.slideshare.net/JohanJanssens/drupalcon-2005-joomla-drupal-and-you-presentationmaandag 9 mei 2011
  • Joomla! 1.6 ACL ACL?! • ACL = Access Control List • Access to parts of the website – e.g. menu / module visibility – “view” action • User actions on objects – e.g. create / edit / delete articlemaandag 9 mei 2011
  • Joomla! 1.6 ACL ACL in Joomla! 1.5 & 1.6 (Access) • 7 fixed Groups • Unlimited Groups – Public, Registered, Author, Editor, – user-defined Publisher, Manager, Administrator – not hierarchical and Super-Administrator – Hierarchical structure • User can be assigned to • User can be assigned to one group multiple groupsmaandag 9 mei 2011
  • Joomla! 1.6 ACL ACL in Joomla! 1.5 & 1.6 (Access) • 3 fixed Access Levels • Unlimited Access Levels – Public, Registered and Special – user-defined • Fixed relation between • Any combination of Groups and Access Levels Groups can be assigned to any Access Levelmaandag 9 mei 2011
  • Joomla! 1.6 ACL ACL in Joomla! 1.5 & 1.6 (Actions) • Fixed Actions per group – Create / edit / delete / admin access / etc. • Permission scope for entire site – Same permission for all objects • Permission inheritance not applicable • http://brian.teeman.net/joomla-gps/joomla-15-acl-explained.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL ACL in Joomla! 1.5 & 1.6 (Actions)• http://brian.teeman.net/joomla-gps/joomla-15-acl-explained.html maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL in Joomla! 1.5 & 1.6 (Actions) • Fixed Actions per group • User defined Actions per – Create / edit / delete / group admin access / etc. – Create / edit / delete / admin access / etc. • Permission scope for • Permission scope at entire site multiple levels – Same permission for all objects – Site, Component, Category, Object • Permission inheritance • Permission can be not applicable inherited – from parent Groups and parent Categoriesmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla! 1.6 ACL Overviewmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL Overview • http://community.joomla.org/blogs/community/1252-16-acl.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL Overview • http://community.joomla.org/blogs/community/1252-16-acl.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL: User • Guest is also a user • Users can be assigned to one or several groupsmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL Overview • http://community.joomla.org/blogs/community/1252-16-acl.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL: Permissions • Assigned to group (not to a user!) • 9 Actions – Site Login – Admin Login – Super Admin – Access Component – Create – Delete – Edit – Edit State – Edit Ownmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL Overview • http://community.joomla.org/blogs/community/1252-16-acl.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL: Groups • Users with same permissions • User can be in multiple groups • Inherit permissions from parent groups • Unlimited (sub-)groups • Keep it simple! Only use nested groups if neededmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL Overview • http://community.joomla.org/blogs/community/1252-16-acl.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL: Access Level • Which group can view what (article, menu, module, etc.) • Permissions are not inherited between Access Levels • Even Super Users can not view content on frontendmaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla 1.6 ACL Overview • http://community.joomla.org/blogs/community/1252-16-acl.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Permissionsmaandag 9 mei 2011
  • Joomla! 1.6 ACL How Permissions work • 4 possible permission settings – Not Set – Inherited – Allowed – Deniedmaandag 9 mei 2011
  • Joomla! 1.6 ACL How Permissions work • Not set – ‘soft’ deny – can be overridden by ‘Allowed’ or ‘Denied’maandag 9 mei 2011
  • Joomla! 1.6 ACL How Permissions work • Inherited – value from a parent permission level – value from a parent user group – can be overridden by ‘Allowed’ or ‘Denied’maandag 9 mei 2011
  • Joomla! 1.6 ACL How Permissions work • Allowed – action for current permission level and lower levels – action for current user group and child groups – can be overridden by ‘Denied’maandag 9 mei 2011
  • Joomla! 1.6 ACL How Permissions work • Denied – action for current permission level and lower levels – action for current user group and child groups – can’t be overridden at all – always win!maandag 9 mei 2011
  • Joomla! 1.6 ACL Permission Hierarchy Levels • Level 1: Global configuration – default permissions settings for actions for a groupmaandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Global Configuration (Level 1)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permission Hierarchy Levels • Level 1: Global configuration – default permissions settings for actions for a group • Level 2: Component Options – can override the permissions of Level 1maandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Component Options (Level 2)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Component Options (Level 2)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permission Hierarchy Levels • Level 1: Global configuration – default permissions settings for actions for a group • Level 2: Component Options – can override the permissions of Level 1 • Level 3: Category – can override the permissions of Level 1 & Level 2 – available for components with categories (Articles, Banners, etc...)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Category (Level 3)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Category (Level 3)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permission Hierarchy Levels • Level 1: Global configuration – default permissions settings for actions for a group • Level 2: Component Options – can override the permissions of Level 1 • Level 3: Category – can override the permissions of Level 1 & Level 2 – available for components with categories (Articles, Banners, etc...) • Level 4: Item – can override the permissions of Level 1 & Level 2 & Level 3 – only available for articles in Joomla 1.6 coremaandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Item (Level 4)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permissions: Item (Level 4)maandag 9 mei 2011
  • Joomla! 1.6 ACL Permission Hierarchy Levels • Level 1: Global configuration – default permissions settings for actions for a group • Level 2: Component Options – can override the permissions of Level 1 • Level 3: Category – can override the permissions of Level 1 & Level 2 – available for components with categories (Articles, Banners, etc...) • Level 4: Item – can override the permissions of Level 1 & Level 2 & Level 3 – only available for articles in Joomla 1.6 coremaandag 9 mei 2011
  • Joomla! 1.6 ACL Permission Hierarchy Levels • Level 1: Global configuration – default permissions settings for actions for a group • Level 2: Component Options – can override the permissions of Level 1 • Level 3: Category – can override the permissions of Level 1 & Level 2 – available for components with categories (Articles, Banners, etc...) • Level 4: Item – can override the permissions of Level 1 & Level 2 & Level 3 – only available for articles in Joomla 1.6 core • Override permissions of higher levels only works if permission setting is not ‘Denied’!maandag 9 mei 2011
  • Joomla! 1.6 ACL Inheriting example for ‘Create’ action Level 1 Level 2 Level 3 Level 4 • http://www.theartofjoomla.com/home/5-commentary/84-introducing-the-new-permissions-in-joomla-16.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Inheriting example for ‘Create’ action Level 1 Level 2 Level 3 Level 4 • http://www.theartofjoomla.com/home/5-commentary/84-introducing-the-new-permissions-in-joomla-16.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Inheriting example for ‘Create’ action Level 1 Level 2 Level 3 Level 4 • http://www.theartofjoomla.com/home/5-commentary/84-introducing-the-new-permissions-in-joomla-16.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Inheriting example for ‘Create’ action Level 1 Level 2 Level 3 Level 4 • http://www.theartofjoomla.com/home/5-commentary/84-introducing-the-new-permissions-in-joomla-16.htmlmaandag 9 mei 2011
  • Joomla! 1.6 ACL Available Permissions and Levels for a Group of Usersmaandag 9 mei 2011
  • Joomla! 1.6 ACL Action: Edit Statemaandag 9 mei 2011
  • Joomla! 1.6 ACL Many permission screens....maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Manager for Joomla! 1.6maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Manager for Joomla! 1.6maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Manager for Joomla! 1.6maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Manager for Joomla! 1.6maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Manager for Joomla! 1.6maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Manager for Joomla! 1.6 www.aclmanager.netmaandag 9 mei 2011
  • Joomla! 1.6 ACL Debug Permissionsmaandag 9 mei 2011
  • Joomla! 1.6 ACL Debug Permissions • Turn on the ‘Debug System’ in the Global Configuration • Go to ‘User Manager’ or ‘Groups’ • Click on ‘Debug Permission Report’ next to the User or User Groupmaandag 9 mei 2011
  • Joomla! 1.6 ACL Debug Permissionsmaandag 9 mei 2011
  • Joomla! 1.6 ACL Debug Permissions • Need to turn ‘Debug System’ on...maandag 9 mei 2011
  • Joomla! 1.6 ACL So, what about the database?maandag 9 mei 2011
  • Joomla! 1.6 ACL Database: #__assetsmaandag 9 mei 2011
  • Joomla! 1.6 ACL Plan your ACL implementationmaandag 9 mei 2011
  • Joomla! 1.6 ACL Describe the problem • Most of the website is public available, specific content only for a group of users (e.g. teachers & students) • A teacher can see content specifically for teachers, all student content and all public content • Students can see content specifically for students and all public contentmaandag 9 mei 2011
  • Joomla! 1.6 ACL Viewing or action problem? • Define the problem, is it a viewing problem or action problem (create/delete/edit/etc..)? Or both? • Viewing: define the Viewing Access Levels • Action: define the permissions for all actionsmaandag 9 mei 2011
  • Joomla! 1.6 ACL Think ahead! Maintenance? • Structure your content properly to handle the permissions • Make usage of parent categories with nested categories with same permissions • No need to set permissions per articlemaandag 9 mei 2011
  • Joomla! 1.6 ACL Some Notesmaandag 9 mei 2011
  • Joomla! 1.6 ACL User in multiple groups • The Netherlands – Allowed on edit ‘The Netherlands’ category – Denied on edit ‘Belgium’ category • Belgium – Allowed on edit ‘Belgium’ category – Denied on edit ‘The Netherlands’ category • User in The Netherlands & Belgium group – Denied on edit ‘The Netherlands’ category – Denied on edit ‘Belgium’ category – Denied always win (again) – Solution: don’t use denied but not set/inherited (=soft deny)maandag 9 mei 2011
  • Joomla! 1.6 ACL What if I locked myself out? :-)maandag 9 mei 2011
  • Joomla! 1.6 ACL What if I locked myself out? :-) • No need to access your database • Open your configuration.php and add: – public $root_user = username; • You can login again and perform all actions • Great for playing around with the new ACL • Don’t forget to remove the $root_user line!maandag 9 mei 2011
  • Joomla! 1.6 ACL Practical ACL Tipsmaandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Tips • Write down your ACL requirements for a website before implementing • Joomla 1.5 User Groups are for backward compatibility in Joomla 1.6, you may remove them! • Use multi-nested Groups only if needed / know what you are doing (so inheriting value only between levels, not groups as well)maandag 9 mei 2011
  • Joomla! 1.6 ACL ACL Tips • Assign User Group with backend access to a Viewing Access Level • Keep flexible for lower permission levels/groups: Avoid the ‘Denied’ permission setting as long as possible • Idea: Make a Group for each Action so you can assign actions directly to a usermaandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla! ACL, what’s next?maandag 9 mei 2011
  • Joomla! 1.6 ACL Main suggestions • View as action • END user friendly interface • Easy overview of your entire website • Changes directly visible (no page reload) • ...maandag 9 mei 2011
  • Joomla! 1.6 ACL Joomla! ACL: Good start, it is working but needs improvements for wide adoption by the Joomla communitymaandag 9 mei 2011
  • Joomla! 1.6 ACL Resources • http://www.yireo.com/tutorials/joomla/joomla-administration/402-joomla-16- acls-1-marketing-group • http://community.joomla.org/blogs/community/1252-16-acl.html • http://docs.joomla.org/ACL_Tutorial_for_Joomla_1.6 • http://docs.joomla.org/Access_Control_System_In_Joomla_1.6 • http://www.theartofjoomla.com/home/5-commentary/84-introducing-the-new- permissions-in-joomla-16.html • http://www.theartofjoomla.com/home/38-talks/101-the-joomla-16-video- access-controls.html • http://www.aclmanager.netmaandag 9 mei 2011