The Web Content Management System (WCMS), also known as Cascade CMS, provides the ability to implement complex permissions and access to assets. The following guide explains how basic site roles are configured and gives suggestions for setting up more complex permissions. More information is available on the Hannon Hill Knowledge Base.
Roles and Access
A User is an individual who uses the WCMS. They access the WCMS over the IU VPN or through the campus network. They authenticate through IU Login using their personal credentials when accessing the WCMS. A User leaves an audit trail in the WCMS.
A Group consists of one or more users with common permissions. Permissions are Roles and Access Rights (ACL).
A Role defines the ability for a user or group to perform actions or functions in the WCMS. For instance, a Site Manager role gives you the ability to edit access to assets like pages. A Site Contributor role gives you the ability to move and rename assets.
There are two types of Roles: System Roles and Site Roles. A System Role defines functions at a system-wide level, beyond your single site. A Site Role defines functions within a specific site. For instance, the WCMS Administrators are the only users with the System Role of Administrator.
Access Rights (ACL)Access Rights, or ACLs, control what assets are visible to a user or group. You can edit the access for a single asset, or you can edit the access for the contents of one or more directories.
There are four Site Roles: Manager, Publisher, Approver, and Contributor. You can assign a group to a Site Role by using the WCMS Manager Tools on the WCMS Website.
A Site Manager is the only one that can access the manage site area and access the Manager Tools on the WCMS website. Site Managers are the only role that can change access to an asset. Site Publishers can publish assets. Site Approvers can approve and assign workflows. Site Contributors can create, edit, move, and rename assets.
Permissions for Site Roles are cascading. This means a user in a group with the Site Manager Role does not have to add themselves to a group with the Site Contributor Role, because a Site Manager can do everything a Site Contributor can do.
|Site Manager||Site Publisher||Site Approver||Site Contributor|
|Access Manage Site Area||X|
|Access Manager Tools||X|
|Approve & Assign Workflows||X||X||X|
|Create and Edit Assets||X||X||X||X|
|Move and Rename Assets||X||X||X||X|
Default Site Roles
Every new site in the WCMS is setup with default groups and permissions. Each group is given a Site Role. The <Site Name>_manager group is given the Site Manager Role and has write access to all assets. The <Site Name>_publisher group is given the Site Publisher Role and has write access to publishable assets and folders. The <Site Name>_approver group is given the Site Approver Role and has read access to all assets. The <Site Name>_contributor group is given the Site Contributor Role and has read access to all assets. Groups with the Site Approver and Site Contributor Roles must be given write access to assets before the groups can edit these assets.
|Site Manager||<Site Name>_manager|
|Site Publisher||<Site Name>_publisher|
|Site Approver||<Site Name>_approver|
|Site Contributor||<Site Name>_contributor|