The permissions tab allows the administrator to assign individual permissions to the user. This is recommended only for exceptional situations, as it complicates user permission management. The standard way of assigning permissions, is to configure a group with the desired set of permissions, and then assign the user to it.
The permissions are broken down by type, one for the In-portal administrative console permissions, and one for the front-end. The ‘Inherited' check box specifies that a particular permission is inherited from a group that this user belongs to, and therefore cannot be defined for this user. The ‘Access' check box shows whether a permission is set or unset for the current user. Next to the check box, you will also see a green or a red circle. These circles indicate the active permission state for the user – red means unset, and the green – set. This is especially useful in for the inherited permissions – you do not have to look up all of the groups this user belongs to, to find out what the value of a particular permission is.
The list of the administrative console permissions is as follows:
- Admin Login – this permission allows the user to log in, and to use the administrative console. This permission should be assigned with caution.
- Append phpinfo to all pages (Debug) – All permissions, marked with (debug) are used for testing purposes when the code has been modified. They are not necessary, and sometimes distracting, for the daily usage of the console. This permission will display the PHP info page at the top of each page.
- Change User Profiles – this permission will allow the user to view and change other users' profiles on the front end.
- Display Item List Queries (Debug) – this debug permission will display the SQL queries above on each list page, after each list operation is performed.
- Display Item Queries (Debug) – this debug permission will display the SQL queries for all other actions.
- Show Language Tags – this permission will show undefined language variables in the administrative console as links. The link will open up a pop-up for creation of that language variable in the current regional pack. This is a useful permission for enhancing and debugging translations.
The list of the front-end permissions is as follows:
- Allow Login – this permission will allow a registered user to log into the front end of the In-portal site. It is equivalent, for all intents and purposes, to setting a front-end only user's status to ‘Pending' or ‘Disabled'. The only difference is for users with administrative privileges – ‘Pending' or ‘Disabled' user will not be able to log into the administrative console as well, regardless of their ‘Admin Login' permission setting.