CiviCRM Community Forums (archive)

*

News:

Have a question about CiviCRM?
Get it answered quickly at the new
CiviCRM Stack Exchange Q+A site
This forum was archived on 25 November 2017. Learn more.
How to get involved.
What to do if you think you've found a bug.



  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Using Core CiviCRM Functions (Moderator: Yashodha Chaku) »
  • How to restrict CiviCRM admin to view only access?
Pages: [1]

Author Topic: How to restrict CiviCRM admin to view only access?  (Read 597 times)

mcgeehon

  • I post occasionally
  • **
  • Posts: 76
  • Karma: 0
  • CiviCRM version: 4.x
  • CMS version: 7.x
  • MySQL version: 5.x
  • PHP version: 5.2.x
How to restrict CiviCRM admin to view only access?
October 04, 2012, 02:34:21 pm
I am running CiviCRM integrated into Drupal.    My organization has many administrators that require access to CiviCRM in order to create events and other postings.

The problem is that some of these people only need the ability to view current events, participants and other data in CiviCRM.  We don't want to give them full access to delete, modify or create new content. 

I cannot find a way through Drupal / Civi permissions to limit a role to only view access.  It seems that you can restrict the ability to delete content and in some cases to edit participants of events.   I cannot figure out a way to completely prevent someone from creating new events or modifying an existing event.

Any ideas?

Thanks

Donald Lobo

  • Administrator
  • I’m (like) Lobo ;)
  • *****
  • Posts: 15963
  • Karma: 470
    • CiviCRM site
  • CiviCRM version: 4.2+
  • CMS version: Drupal 7, Joomla 2.5+
  • MySQL version: 5.5.x
  • PHP version: 5.4.x
Re: How to restrict CiviCRM admin to view only access?
October 04, 2012, 04:50:39 pm

i think we have view access , only for contacts and its related entities.

we've not implemented it at the event / contribution page and other objects

lobo
A new CiviCRM Q&A resource needs YOUR help to get started. Visit our StackExchange proposed site, sign up and vote on 5 questions

Jason W

  • I post frequently
  • ***
  • Posts: 197
  • Karma: 12
  • jason@civitrainingtutorials.com
  • CiviCRM version: 4.2
  • CMS version: Drupal 7
  • MySQL version: 5.x
  • PHP version: 5.x.x
Re: How to restrict CiviCRM admin to view only access?
October 05, 2012, 10:03:14 am
Hello mcgeehon,

ACLs might help with this issue. For example, set it up like this :

Create 2 groups:
Admin View only - contains the Admin that are being restricted to view only.

Admin - can perform all Event Operations.

In CiviCRM, go to Administer-->Users and Permissions-->Permissions(ACLs)
       a) Manage Roles- Create 2 roles: "Admin-view only" and "Admin"
       b) Assign Users to Roles- Assign the "Admin-view only" Group to the "Admin-view only" Role, likewise for Admin
       c) Manage ACLs-->Add an ACL - Description is whatever you like, Role=Admin, Operation=view, type of data=events, Event= the event that you want to restrict access to. Repeat for Admin, except operation= All.

NOTE: For Event ACLs, the 'View' operation allows access to the event information screen. "Edit" allows users to register for the event if online registration is enabled.
Please remember that Drupal's "register for events" permission overrides CiviCRM's control over event information access.

Cheers!
Jason
civiTrainingTutorials
"Helping You Help Others"

mcgeehon

  • I post occasionally
  • **
  • Posts: 76
  • Karma: 0
  • CiviCRM version: 4.x
  • CMS version: 7.x
  • MySQL version: 5.x
  • PHP version: 5.2.x
Re: How to restrict CiviCRM admin to view only access?
October 08, 2012, 10:21:28 pm
Thanks.  I will try this and update on whether it works.
Pages: [1]
  • CiviCRM Community Forums (archive) »
  • Old sections (read-only, deprecated) »
  • Support »
  • Using CiviCRM »
  • Using Core CiviCRM Functions (Moderator: Yashodha Chaku) »
  • How to restrict CiviCRM admin to view only access?

This forum was archived on 2017-11-26.