The tables below provide a comprehensive view of all permissions assigned to each default role, group and user.
You can get a list of all permissions assigned to a user or group using the permission list tool.
Roles
anonymous
The anonymous role defines the permissions of public, unauthenticated users. Permissions on the author and public instances differ.
| Instance | Space | Permission | Scope | Path |
|---|
| both | Dms | Read only | Selected and sub nodes | / |
| | Expressions | Read only | Selected and sub nodes | / |
| | Resources | Read only | Selected and sub nodes | / |
| | Store | Read only | Selected and sub nodes | / |
| author | URL | Deny access | n/a | * |
| | | Deny access | n/a | /.magnolia* |
| | Website | Deny Access | Selected and sub pages | / |
| public | URL | Get & Post | n/a | * |
| | | Deny access | n/a | /.magnolia* |
| | | Deny access | n/a | /.magnolia/* |
| | | Deny access | n/a | /demo-project/members-area/protected* |
| | Website | Read only | Selected and sub pages | / |
superuser
The superuser role provides full access to the system.
| Space | Permission | Scope | Path |
|---|
| Config | Read/Write | Selected and sub nodes | / |
| | Read/Write | Selected and sub nodes | /modules/workflow/config/flows |
| Data | Read/Write | Selected and sub nodes | / |
| Dms | Read/Write | Selected and sub nodes | / |
| Expressions | Read/Write | Selected and sub nodes | / |
| Forum | Read only | Selected and sub nodes | / |
| Imaging | Read/Write | Selected and sub nodes | / |
| Packager | Read/Write | Selected and sub nodes | / |
| Resources | Read/Write | Selected and sub nodes | / |
| Scripts | Read/Write | Selected and sub nodes | / |
| Store | Read/Write | Selected and sub nodes | / |
| Templates | Read/Write | Selected and sub nodes | / |
| URL | Get & Post | n/a | * |
| Usergroups | Read/Write | Selected and sub nodes | / |
| Userroles | Read/Write | Selected and sub nodes | / |
| Users | Read/Write | Selected and sub nodes | / |
| Website | Read/Write | Selected and sub pages | / |
demo-project roles
The demo-project roles allow users to access the system from STK point of view and provide varying permissions for editors, publishers and protected pages.
| Role | Space | Permission | Scope | Path |
|---|
demo-project-base | Config | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/website |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/dms |
| | | Read only | Selected node | /modules/adminInterface/config/menu/data |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/Contact |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/category |
| | | Read only | Selected and sub nodes | /modules/data/config/types |
| | Data | Read only | Selected and sub nodes | / |
| | Dms | Read only | Selected and sub nodes | /templating-kit |
| | Resources | Read only | Selected and sub nodes | / |
| | URL | Get & Post | n/a | * |
demo-project-editor | Config | Read only | Selected and sub nodes | /modules/standard-templating-kit/templates |
| | Data | Read/Write | Selected and sub nodes | / |
| | Dms | Read/Write | Selected and sub nodes | /demo-project |
| | | Read only | Selected and sub nodes | /$ |
| | Website | Read/Write | Selected and sub pages | /demo-project |
| | | Read only | Selected and sub pages | /$ |
demo-project-publisher | Data | Read only | Selected and sub nodes | / |
| | Dms | Read only | Selected and sub nodes | /demo-project |
| | | Read only | Selected and sub nodes | /$ |
| | Website | Read only | Selected and sub pages | /demo-project |
| | | Read only | Selected and sub pages | /$ |
demo-project-member | URL | Get & Post | n/a | /demo-project/members-area/protected* |
Forum roles
| Role | Space | Permission | Scope | Path |
|---|
forum-base | Forum | Read only | Selected and sub nodes | / |
| | URL | Get & Post | n/a | /.magnolia/pages/forum* |
forum-moderator-base | Config | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/forum |
| | Forum | Read only | Selected and sub nodes | / |
| | URL | Get & Post | n/a | * |
forum-pagecomments-admin | Forum | Administer (Moderate, Delete and Activate) | Selected and sub nodes | /pagecomments |
forum-pagecomments-moderator | Forum | Moderate and Delete | Selected and sub nodes | /pagecomments |
forum-pagecomments-user | Forum | Post (Write) | Selected and sub nodes | /pagecomments |
forum_ALL-admin | Forum | Administer (Moderate, Delete and Activate) | Selected and sub nodes | / |
| | URL | Get & Post | n/a | /.magnolia/pages/forum* |
forum_ALL-moderator | Forum | Moderate and Delete | Selected and sub nodes | / |
| | URL | Get & Post | n/a | /.magnolia/pages/forum* |
forum_ALL-user | Forum | Post (Write) | Selected and sub nodes | / |
| | URL | Get & Post | n/a | /.magnolia/pages/forum* |
Base roles
categorization-base
| Space | Permission | Scope | Path |
|---|
| Data | Read only | Selected and sub nodes | /categorization |
| Space | Permission | Scope | Path |
|---|
| Data | Read only | Selected and sub nodes | /contacts |
imaging-base
| Space | Permission | Scope | Path |
|---|
| Imaging | Read/Write | Selected and sub nodes | / |
public-user-registration-base
| Space | Permission | Path |
|---|
| URL | Get & Post | /.magnolia/pages/password-reminder* |
| | Get & Post | /.magnolia/pages/user-validation* |
| | Get & Post | /.magnolia/pages/register* |
resources-base
| Space | Permission | Scope | Path |
|---|
| Config | Read only | Selected and sub nodes | /modules/resources |
| | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/templating-kit/resources |
| | Read only | Selected node | /modules/adminInterface/config/menu/templating-kit |
| Resources | Read/Write | Selected and sub nodes | / |
| Space | Permission | Scope | Path |
|---|
| Data | Read only | Selected and sub nodes | /rssaggregator |
scripter
| Space | Permission | Scope | Path |
|---|
| Config | Read only | Selected node | /modules/adminInterface/config/menu/tools |
| | Read only | Selected node | /modules/adminInterface/config/menu/tools/groovyInteractiveShell |
| | Read only | Selected node | /modules/adminInterface/config/menu/tools/scripts |
| Scripts | Read/Write | Selected and sub nodes | / |
| URL | Get & Post | n/a | * |
security-base
| Space | Permission | Scope | Path |
|---|
| URL | Deny access | n/a | /.magnolia/pages/installedModulesList.html |
| | Deny access | n/a | /.magnolia/pages/jcrUtils.html |
| | Deny access | n/a | /.magnolia/log4j |
| | Deny access | n/a | /.magnolia/pages/configuration.html |
| | Deny access | n/a | /.magnolia/pages/logViewer.html |
| | Deny access | n/a | /.magnolia/pages/sendMail.html |
templater-base
| Space | Permission | Scope | Path |
|---|
| Config | Read only | Selected node | /modules/inplace-templating/ |
| | Read only | Sub nodes | /modules/inplace-templating |
| | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/templating-kit/templates |
| Templates | Read/Write | Selected and sub nodes | / |
workflow-base
| Space | Permission | Scope | Path |
|---|
| Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| Expressions | Read/Write | Selected and sub nodes | / |
| Store | Read/Write | Selected and sub nodes | / |
Groups
demo-project-editors
| Assigned group | Assigned role | Space | Permission | Scope | Path |
|---|
| | demo-project-base | Config | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/website |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/dms |
| | | | Read only | Selected node | /modules/adminInterface/config/menu/data |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/Contact |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/category |
| | | | Read only | Selected and sub nodes | /modules/data/config/types |
| | | Data | Read only | Selected and sub nodes | / |
| | | Dms | Read only | Selected and sub nodes | /templating-kit |
| | | Resources | Read only | Selected and sub nodes | / |
| | | URL | Get & Post | n/a | * |
| | demo-project-editor | Config | Read only | Selected and sub nodes | /modules/standard-templating-kit/templates |
| | | Data | Read/Write | Selected and sub nodes | / |
| | | Dms | Read/Write | Selected and sub nodes | /demo-project |
| | | | Read only | Selected and sub nodes | /$ |
| | | Website | Read/Write | Selected and sub pages | /demo-project |
| | | | Read only | Selected and sub pages | /$ |
| | imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
editors | workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | | Expressions | Read/Write | Selected and sub nodes | / |
| | | Store | Read/Write | Selected and sub nodes | / |
demo-project-publishers
| Assigned group | Assigned role | Space | Permission | Scope | Path |
|---|
| | demo-project-base | Config | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/website |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/dms |
| | | | Read only | Selected node | /modules/adminInterface/config/menu/data |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/Contact |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/category |
| | | | Read only | Selected and sub nodes | /modules/data/config/types |
| | | Data | Read only | Selected and sub nodes | / |
| | | Dms | Read only | Selected and sub nodes | /templating-kit |
| | | Resources | Read only | Selected and sub nodes | / |
| | | URL | Get & Post | n/a | * |
| | demo-project-publisher | Data | Read only | Selected and sub nodes | / |
| | | Dms | Read only | Selected and sub nodes | /demo-project |
| | | | Read only | Selected and sub nodes | /$ |
| | | Website | Read only | Selected and sub pages | /demo-project |
| | | | Read only | Selected and sub pages | /$ |
| | imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
publishers | workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | | Expressions | Read/Write | Selected and sub nodes | / |
| | | Store | Read/Write | Selected and sub nodes | / |
demo-project-members
Author instance
| Assigned roles | Space | Permission | Scope | Path |
|---|
anonymous | Dms | Read only | Selected and sub nodes | / |
| | Expressions | Read only | Selected and sub nodes | / |
| | Resources | Read only | Selected and sub nodes | / |
| | Store | Read only | Selected and sub nodes | / |
| | URL | Deny access | n/a | * |
| | | Deny access | n/a | /.magnolia* |
| | Website | Deny Access | Selected and sub pages | / |
demo-project-member | URL | Get & Post | n/a | /demo-project/members-area/protected* |
public-user-registration-base | URL | Get & Post | n/a | /.magnolia/pages/password-reminder* |
| | | Get & Post | n/a | /.magnolia/pages/user-validation* |
| | | Get & Post | n/a | /.magnolia/pages/register* |
resources-base | Config | Read only | Selected and sub nodes | /modules/resources |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/templating-kit/resources |
| | | Read only | Selected node | /modules/adminInterface/config/menu/templating-kit |
| | Resources | Read/Write | Selected and sub nodes | / |
imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
contact-base | Data | Read only | Selected and sub nodes | /contacts |
Public instance
| Assigned role | Space | Permission | Scope | Path |
|---|
anonymous | Dms | Read only | Selected and sub nodes | / |
| | Expressions | Read only | Selected and sub nodes | / |
| | Resources | Read only | Selected and sub nodes | / |
| | Store | Read only | Selected and sub nodes | / |
| | URL | Get & Post | n/a | * |
| | | Deny access | n/a | /.magnolia* |
| | | Deny access | n/a | /.magnolia/* |
| | | Deny access | n/a | /demo-project/members-area/protected* |
| | Website | Read only | Selected and sub pages | / |
demo-project-member | URL | Get & Post | n/a | /demo-project/members-area/protected* |
public-user-registration-base | URL | Get & Post | n/a | /.magnolia/pages/password-reminder* |
| | | Get & Post | n/a | /.magnolia/pages/user-validation* |
| | | Get & Post | n/a | /.magnolia/pages/register* |
resources-base | Config | Read only | Selected and sub nodes | /modules/resources |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/templating-kit/resources |
| | | Read only | Selected node | /modules/adminInterface/config/menu/templating-kit |
| | Resources | Read/Write | Selected and sub nodes | / |
imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
contact-base | Data | Read only | Selected and sub nodes | /contacts |
editors
workflow-base
| Assigned role | Space | Permission | Scope | Path |
|---|
workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | Expressions | Read/Write | Selected and sub nodes | / |
| | Store | Read/Write | Selected and sub nodes | / |
publishers
workflow-base
| Assigned role | Space | Permission | Scope | Path |
|---|
workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | Expressions | Read/Write | Selected and sub nodes | / |
| | Store | Read/Write | Selected and sub nodes | / |
Users
anonymous (systems user)
Author instance
| Assigned role | Space | Permission | Scope | Path |
|---|
anonymous | Dms | Read only | Selected and sub nodes | / |
| | Expressions | Read only | Selected and sub nodes | / |
| | Resources | Read only | Selected and sub nodes | / |
| | Store | Read only | Selected and sub nodes | / |
| | URL | Deny access | n/a | * |
| | | Deny access | n/a | /.magnolia* |
| | Website | Deny Access | Selected and sub pages | / |
categorization-base | Data | Read only | Selected and sub nodes | /categorization |
contact-base | Data | Read only | Selected and sub nodes | /contacts |
imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
Public instance
| Assigned role | Space | Permission | Scope | Path |
|---|
anonymous | Dms | Read only | Selected and sub nodes | / |
| | Expressions | Read only | Selected and sub nodes | / |
| | Resources | Read only | Selected and sub nodes | / |
| | Store | Read only | Selected and sub nodes | / |
| | URL | Get & Post | n/a | * |
| | | Deny access | n/a | /.magnolia* |
| | | Deny access | n/a | /.magnolia/* |
| | | Deny access | n/a | /demo-project/members-area/protected* |
| | Website | Read only | Selected and sub pages | / |
categorization-base | Data | Read only | Selected and sub nodes | /categorization |
contact-base | Data | Read only | Selected and sub nodes | /contacts |
imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
superuser (systems user)
| Assigned group | Assigned role | Space | Permission | Scope | Path |
|---|
| | superuser | Config | Read/Write | Selected and sub nodes | / |
| | | | Read/Write | Selected and sub nodes | /modules/workflow/config/flows |
| | | Data | Read/Write | Selected and sub nodes | / |
| | | Dms | Read/Write | Selected and sub nodes | / |
| | | Expressions | Read/Write | Selected and sub nodes | / |
| | | Forum | Read only | Selected and sub nodes | / |
| | | Imaging | Read/Write | Selected and sub nodes | / |
| | | Packager | Read/Write | Selected and sub nodes | / |
| | | Resources | Read/Write | Selected and sub nodes | / |
| | | Store | Read/Write | Selected and sub nodes | / |
| | | Templates | Read/Write | Selected and sub nodes | / |
| | | URL | Get & Post | n/a | * |
| | | Usergroups | Read/Write | Selected and sub nodes | / |
| | | Userroles | Read/Write | Selected and sub nodes | / |
| | | Users | Read/Write | Selected and sub nodes | / |
| | | Website | Read/Write | Selected and sub pages | / |
| | forum_ALL-admin | Forum | Administer (Moderate, Delete and Activate) | Selected and sub nodes | / |
| | | URL | Get & Post | n/a | /.magnolia/pages/forum* |
publishers | workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | | Expressions | Read/Write | Selected and sub nodes | / |
| | | Store | Read/Write | Selected and sub nodes | / |
eric (user)
| Assigned group | Assigned role | Space | Permission | Scope | Path |
|---|
demo-project-editors | demo-project-base | Config | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/website |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/dms |
| | | | Read only | Selected node | /modules/adminInterface/config/menu/data |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/Contact |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/category |
| | | | Read only | Selected and sub nodes | /modules/data/config/types |
| | | Data | Read only | Selected and sub nodes | / |
| | | Dms | Read only | Selected and sub nodes | /templating-kit |
| | | Resources | Read only | Selected and sub nodes | / |
| | | URL | Get & Post | n/a | * |
| | demo-project-editor | Config | Read only | Selected and sub nodes | /modules/standard-templating-kit/templates |
| | | Data | Read/Write | Selected and sub nodes | / |
| | | Dms | Read/Write | Selected and sub nodes | /demo-project |
| | | | Read only | Selected and sub nodes | /$ |
| | | Website | Read/Write | Selected and sub pages | /demo-project |
| | | | Read only | Selected and sub pages | /$ |
| | imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
editors | workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | | Expressions | Read/Write | Selected and sub nodes | / |
| | | Store | Read/Write | Selected and sub nodes | / |
peter (user)
| Assigned group | Assigned role | Space | Permission | Scope | Path |
|---|
demo-project-publishers | demo-project-base | Config | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/website |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/dms |
| | | | Read only | Selected node | /modules/adminInterface/config/menu/data |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/Contact |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/data/category |
| | | | Read only | Selected and sub nodes | /modules/data/config/types |
| | | Data | Read only | Selected and sub nodes | / |
| | | Dms | Read only | Selected and sub nodes | /templating-kit |
| | | Resources | Read only | Selected and sub nodes | / |
| | | URL | Get & Post | n/a | * |
| | demo-project-publisher | Data | Read only | Selected and sub nodes | / |
| | | Dms | Read only | Selected and sub nodes | /demo-project |
| | | | Read only | Selected and sub nodes | /$ |
| | | Website | Read only | Selected and sub pages | /demo-project |
| | | | Read only | Selected and sub pages | /$ |
| | imaging-base | Imaging | Read/Write | Selected and sub nodes | / |
publishers | workflow-base | Config | Read only | Selected and sub nodes | /modules/workflow/config/flows |
| | | | Read only | Selected and sub nodes | /modules/adminInterface/config/menu/inbox |
| | | Expressions | Read/Write | Selected and sub nodes | / |
| | | Store | Read/Write | Selected and sub nodes | / |
#trackbackRdf ($trackbackUtils.getContentIdentifier($page) $page.title $trackbackUtils.getPingUrl($page))