CiviCRM Community Forums (archive)

I'm just getting started with CiviCRM roles, in order to restrict access to specific profiles.

I have configured a first profile which should allow our organisational staff to view members by region (using custom data fields that pertain to branch, electorate, and province). This profile should only be available to staff who are logged in.

I also have a site registration form, which I want to make available to anonymous users.

However, on setting up the permissions for that profile I see this message:
The Drupal permissions for "access all custom data" and "profile listings and forms"
 override and disable specific ACL settings for custom field groups and profiles
 respectively. Do not enable those Drupal permissions for a Drupal role if you
 want to use CiviCRM ACL's to control access.
As I understand it, in order to let anonymous users register for membership I need to allow anonymous users access to "access all custom data" and "profile listings and forms". In the wiki page on Linking Profiles, the documentation says
* For anonymous users to access the sign-up form, you need to give anonymous users
   permission to access "profile listings and forms".
 * If you are using custom fields in your profiles and want anonymous users to access the form,
   you also need to give anonymous users permisison on "access all custom data"
But in order to restrict access per profile, I need to *not* allow anonymous users access to "profile listings and forms".

When testing this, I found that if I disable the capability for anonymous users to access "profile listings and forms", CiviCRM throws a "non-recoverable error" when an anonymous user tries to access the registration form. Disabling access to "access all custom data" didn't throw any errors, but may just prevent me from gathering custom data on registration.

It seems odd for these two valuable features to preclude each other ... I'm guessing that I just need to work out how to configure the permissions correctly.

I can't see a way to add a CiviCRM ACL that applies to anonymous users, otherwise I guess I could create a ACL for the anonymous users to access only the registration profile(s) and allow staff-only access to the profiles they need.

Chris:

we can chat more on this on IM

There are "special" ACL groups that are pre-created for anonymous and authenticated user. So can you use those groups to give anon users accesss to only the specific profile you want exposed, and give auth users access to another profile?

lobo

this is currently not possible. I suspect we need to address this in a future 2.x release

wanna file an issue

lobo

Thanks for filing the issue. We'll handle permissions for the create / edit forms separately in 2.3. Until then there's a decent work-around that you can use to prevent folks from accessing listings of contacts that you don't want to expose:

* Create a new group - you could call it "Public Group" for example. Put one or more contact records in that group that you're fine about the public seeing (it could be just an Organization contact record for the organization that owns the CiviCRM installation).

* Go to Settings for your Create / Edit Profile - open Advanced Settings pane - and select that group in the "Limit listings to a specific Group?" drop-down.

Now if anyone "finds" the listings URL - the only records they can see are the one(s) in your Public Group.