KUSoftas CMS
Responsive design
Demo User

Download

Last stable v 4.5 2018-11-01

    Access Control

    Localisation
    Full-Text Indexing and Search
    CMS Access Control Basics | Overview | Documentation (image)

    KUSoftas CMS supports Access Control List (ACL) to authorize CMS Object (site resource) access. ACL contains read (r), write (w), exec (e), manage (m) permissions assigned to users and groups (roles). Permissions can be inherited (i) from CMS Object Container (ex. file may inherit permissions from folder, folder - from parent folder, etc.). Inheritance may be allowed (i = true), or denied (i = false). Top CMS Object Container is page containing CMS Object / CMS Objects Tree. Only one exception is WebDAV server. It's top permissions may be defined in CMS tool Setup. As WebDAV uses CMS File Manager backend it's all lower level CMS Object permissions may be defined using CMS File Manager access control.

    Permission evaluate process uses:

    • Session / user credentials (user ID and assigned groups). There can be assigned (using CMS tool Setup) special groups to session for logged on and logged off user permission evaluate.
    • CMS Object ACL (assigned user id and groups for r, w, e, m permissions and inheritance attribute value)
    • Inherited (if i = true) from CMS Object Container ACL (assigned user id and groups for r, w, e, m permissions and inheritance attribute value)

    Folowing CMS Objects are targeted in access control:

    • Pages - authorize page access, authorize pages management in CMS tools
    • Menu - authorize menu items apierance, authorize languag and menu management in CMS tools
    • Folders and files - authorize access to folders and files via CMS File Manager, CMS WYSIVYG Editor, WebDAV server.
    • WebDAV server - authorize WebDAV server usage.
    • CMS Plugins
    • CMS API
    • CMS Tools
    • Site folders and files

    Pages and menu items may be defined available for date/time period.

    KUSoftas CMS supports HTTP Basic Authentication form. If there is no logged user and is attempting to open protected page HTTP Basic Authentication form will be sent to client. If there is logged user and his permissions are not sufficient "Authorization denied" message will be sent to client.

    KUSoftas WebDAV server CMS supports HTTP Digest Authentication form. If there is no logged user and is attempting to access WebDAV server HTTP Digest Authentication form will be sent to client.

    Site files and folders are protected with .htaccess file which uses KUSoftas CMS access control data. HTTP digest authentication for CMS builtin administrator is using.

    © KUSoftas CMS 2014 - 2021. All rights reserved. Site is running on KUSoftas CMS.
    Vulnerability Scanner