The permissions tab allows the administrator to assign permissions to the group. This is the recommended way of managing user permissions.
The permissions are broken down by type, one for the In-portal Administrative Console permissions, and one for the front-end. The ‘Access' check box shows whether a permission is set or unset for the current group. Next to the check box, you will also see a green or a red circle. These circles indicate the active permission state for the group – red means unset, and the green – set. The list of the administrative console permissions is as follows:
- Admin Login – this permission allows the group member to log in, and to use the administrative console. This permission should be assigned with caution.
- Append phpinfo to all pages (Debug) – All permissions, marked with (debug) are used for testing purposes when the code has been modified. They are not necessary, and sometimes distracting, for the daily usage of the console. This permission will display the PHP info page at the top of each page.
- Change User Profiles – this permission will allow the group member to view and change other users' profiles on the front end.
- Display Item List Queries (Debug) – this debug permission will display the SQL queries above on each list page, after each list operation is performed.
- Display Item Queries (Debug) – this debug permission will display the SQL queries for all other actions.
- Show Language Tags – this permission will show undefined language variables in the administrative console as links. The link will open up a pop-up for creation of that language variable in the current regional pack. This is a useful permission for enhancing and debugging translations.
- Read-Only Access To Database – this permission will take away user's ability to modify any information in the database when using the Administrative Console. It is useful for demonstration purposes, as well as for setting up administrators who are only supposed to monitor information without actually changing it.
The list of the front-end permissions is as follows:
- Allow Login – this permission will allow the group member to log into the front end of the In-portal site. It is equivalent, for all intents and purposes, to setting a front-end only user's status to ‘Pending' or ‘Disabled'. The only difference is for users with administrative privileges – ‘Pending' or ‘Disabled' user will not be able to log into the Administrative Console as well, regardless of their ‘Admin Login' permission setting.