Hi,
I am setting the permission for the editors.
In the files tab
Is it possible to hide all folders and files excepted the “documents” folder, I created and where I save all documents (pdf, images) to be linked from the web pages?
It’s dangerous that editors go into those folders oder upload file in root. They must only be able to access and upload files in the documents folder
Cheers
I just observed that
with directory_list, I can hide thos folder. But would have a way to hide all excepted a dedicated folder?
You can achieve this by creating a media source to your desired folder and only give your editors access to this media source (and prohibiting the Filesystem one).
First, give your Admin(s) access to the File System Media Source (on the Access Permissions tab when editing the Media Source). That will hide all files from anyone who is not in that group,
Then, create a new Media Source (in Media → Media Sources) called “Documents” that has the Documents folder as its root (basePath, and baseUrl). On its “Access Permissions” tab, connect it to a user group containing your editors. They should be able to see the Documents folder and below, but nothing else.
Test to make sure they can’t browse upward in the file browser.
It helps to use another browser where you’re not logged in to the Manager for testing the editors’ permissions. You may need to clear the cache, Manage → Log out all users, and/or Manage->Flush your permissions, before testing to see any changes.
Dear @bobray
I come bate late to this topics. I would like to try you suggestion but I do not feel me confortable with this.
First, give your Admin(s) access to the File System Media Source (on the Access Permissions tab when editing the Media Source). That will hide all files from anyone who is not in that group,
I suppose, I have to go there
Media->Ressource
Then, create a new Media Source (in Media → Media Sources) called “Documents” that has the Documents folder as its root (basePath, and baseUrl). On its “Access Permissions” tab, connect it to a user group containing your editors. They should be able to see the Documents folder and below, but nothing else
Then I suppose, I have to create a new media source
But will it create a conflict with the existing folder Documents, listed in my tree here?
When the Documents source will be created, I have to click on the gear->modify, but this time I have to give the Editor-10 role.
But what about the rules ‘Media Source Admin’ and Media Source user’?
Thanks
If you already have a Documents folder, you don’t need to create a new one. You can use that one, or create a new folder with a different name to be the root of your media source.
I’m sorry, I don’t understand your final question. If you mean “roles” instead of “rules,” the Policies are usually more important. They determine which permissions the users have in that situation.
Roles are only meaningful if you want to have users in the same user group who have different permissions. I find this complicating and usually give all users in a particular user group the same role, except that I add my self to every group with the role of admin super user to avoid hiding things from myself.
