Page tree
Skip to end of metadata
Go to start of metadata

See Security on how to manage permissions.

The Security app is used to manage access in the system. Magnolia's built-in access management system authenticates users in order to determine who is using the system and provides them with the means to sign into the application. It also authorizes users, ensuring they have the permissions to do the actions required such as editing pages. The app is accessible at Manage > Security.

Configuration

The Security app is installed by the Security App module. The app is based on the content app framework and it's configuration is typical of any content app. The framework is extended to provide the required additional functionality.

The app is configured in /modules/security-app/apps/security and comes with users, systemsUsers, groups, roles, tools and public subapps. Permission to access all subapps is limited to users assigned the superuser role. 

Node name

Value

 modules

 

 security-app

 

 apps

 

 security

 

 subapps

 

 users

 

 systemUsers

 

 groups

 

 roles

 

  tools

 

 public

 

 permissions

 

 appClass

info.magnolia.security.app.SecurityApp

 class

info.magnolia.ui.contentapp.ConfiguredContentAppDescriptor

 icon

icon-security-app

Workspace

The subapps operate on the following workspaces:

SubappWorkspace
usersusers
systemUsersusers
groupsusergroups
rolesuserroles
publicusers

Node types

The Security app module registers the following custom node type in the subapp configurations. The supapps operate on these nodes types and on mgnl:folder.

SubappNode type
usersmgnl:user
systemUsersmgnl:user
groupsmgnl:group
rolesmgnl:role
publicmgnl:user

Tools subapp

The tools subapp lets you query groups and permissions associated to a given user.

The Tools supapp is useful for permission reporting, auditing and troubleshooting why a user cannot access the resources they should.

In the tab you can see:

  • Permissions: Groups, roles and permissions for any user.
  • Group members: Users assigned to any group or it's transitive group.
  • Role assignments: Users or groups assigned any role.