I have a site which has (or will have) a large number of backend users, The site is also running from multiple domains. Ideally I would like to have a setup where I have multiple admin user types i.e. (siteXadmin and siteYadmin) siteXadmin should be able to create users and siteYadmin should be able to create users but ideally I would like siteYadmin not to be able to see or edit siteXadmin's users and vice versa.
Is this or anything like it acheivable in Umbraco, does anyone have any suggestions.
If you have sitex and sitey and you create adminx and adminy and set their start node to sitex and sitey then adminy can't create users with access to sitex and vice versa since adminy can only see content nodes that appears in sitey.
I hope this makes sense to you - this can be used to create the hierachies you're talking about I think. Same concept goes for access in the media section.
Thanks for your help, I understand about access to the media and content sections but my problem is that although adminx cant create users with access to sitey they can see the users with access to sitey and edit them as well as edit adminy's user account
does that makes sense, I am trying to find a way to restrict users ability to edit other users. Not sure that this will be possible though.
However it appears that when the adminy is logged in he can see the users created by adminx and adminx himself. He can alter one of the sitex users but only to have access to the sitey part of the site.
This can of course potentially create some confusion among admins dependent on how many of them there is going to be.
It does not seem like the access can be restricted in the users section unfortunately.
I think I will talk to my client to see how much of an issue it will be I might suggest that if it is going to be a big issue we contract someone to build a package that does some of the stuff we need.
It might be possible to extend the backed end Umbraco UI to support this, however this would then mean you are likely to be running a custom install of Umbraco which obviously makes future upgrading more difficult.
Another thought, is what do all these users need to do?
We built a site for a client who has over 3.5k users, each with different administrative rights, however they are all "members" rather than "users". Only our clients "super admin" users have access to the back end and the rest of their users ( members ) have limited access to administer nodes via a front end UI that integrates with their site design, it all depends how much admin these users are going to need to do, if it's just simple add and edit of certain nodes it's easy to implement this on the front end and then you can write your own membership provider that gives you the power to assign the rights as you see fit.
User heirarchy
Hey all,
I have a site which has (or will have) a large number of backend users, The site is also running from multiple domains. Ideally I would like to have a setup where I have multiple admin user types i.e. (siteXadmin and siteYadmin) siteXadmin should be able to create users and siteYadmin should be able to create users but ideally I would like siteYadmin not to be able to see or edit siteXadmin's users and vice versa.
Is this or anything like it acheivable in Umbraco, does anyone have any suggestions.
thanks
L
Hi Lachlan
I believe that should be possibe to achieve.
If you have sitex and sitey and you create adminx and adminy and set their start node to sitex and sitey then adminy can't create users with access to sitex and vice versa since adminy can only see content nodes that appears in sitey.
I hope this makes sense to you - this can be used to create the hierachies you're talking about I think. Same concept goes for access in the media section.
/Jan
Hi Jan,
Thanks for your help, I understand about access to the media and content sections but my problem is that although adminx cant create users with access to sitey they can see the users with access to sitey and edit them as well as edit adminy's user account
does that makes sense, I am trying to find a way to restrict users ability to edit other users. Not sure that this will be possible though.
L
However it appears that when the adminy is logged in he can see the users created by adminx and adminx himself. He can alter one of the sitex users but only to have access to the sitey part of the site.
This can of course potentially create some confusion among admins dependent on how many of them there is going to be.
It does not seem like the access can be restricted in the users section unfortunately.
But maybe it's not that big an issue?
/Jan
Yeah that is what i was worried about the site may have a large number of users and i am worried that the user section may become quite confusing.
L
Seems like I was writing the previous post while you must have just hit "submit" to your answer hence my almost identical answer. Sorry 'bout that :-)
But anyway I'm not sure how to workaround this but maybe it should be added as a feature suggestion on codeplex?
/Jan
haha yeah i think you are right.
I think I will talk to my client to see how much of an issue it will be I might suggest that if it is going to be a big issue we contract someone to build a package that does some of the stuff we need.
L
Lachlaan,
It might be possible to extend the backed end Umbraco UI to support this, however this would then mean you are likely to be running a custom install of Umbraco which obviously makes future upgrading more difficult.
Another thought, is what do all these users need to do?
We built a site for a client who has over 3.5k users, each with different administrative rights, however they are all "members" rather than "users". Only our clients "super admin" users have access to the back end and the rest of their users ( members ) have limited access to administer nodes via a front end UI that integrates with their site design, it all depends how much admin these users are going to need to do, if it's just simple add and edit of certain nodes it's easy to implement this on the front end and then you can write your own membership provider that gives you the power to assign the rights as you see fit.
Cheers,
Chris
is working on a reply...