Privileges and Access Controls

JDocDb uses several "roles" to manage access controls and privileges for users of the site. Each role carries its own set of permissions, allowing users posessing it to view/edit/delete/etc various content on the site. Which users are granted which role sand the specific permissions associated with each role are highly confgurable ane maintained by Site Administrators.

General Philosophy

For SoLID, the site is configured so that all content is by default readable by all site visitors. In order to add or edit content, users must login with their CUE credentials. Once logged in, users can create content and edit any content that they've added. Zhiwen Zhao is the site's Content Administrator, having the ability to add/edit his own content, as well as that of other users.

Changing Permissions

As content is added, the default permissions can be modified. This allows users to elect to configure some content to be visible only to authenticated users rather than being world readable. Each content item has a tab at the top of its edit page entitled "Access Controls" that allows the editor to change the default permissions associaed with the item.

Roles

Anonymous User -- This role is held by all visitors to the site without logging in. It represents the public or world.

Authenticated User -- This role is held by all users who successfully login using the CUE credentials

Site User -- This role is granted to members of pre-defined CUE groups. Currently members of the 12gev_solid group are granted the Site User role ater logging in. Currently, the permissions for this role are identical to those for Authenticated User. Thus, all JLab users are allowed to use the site. Later, this role can be used to provide another level of access to group members only if desired.

Content Administrator -- This role is explicitly (manually) granted by the site administrator to users who will administer content on the site. Holders of this role have access to most features/functions of the site related to management of the content on it.

Site Administrator -- This rols is granted to members of the CC staff who are members of our web administrators group. These users have the ability to manage configuration of the sire, permissions, authentication, etc.

12000 Jefferson Avenue, Newport News, VA, 23606
Phone:(757)269-7100 Fax: (757)269-7363