Easy-to-follow video tutorials help you learn software, creative, and business skills.Become a member

Adjusting user permissions

From: Drupal Gardens Essential Training

Video: Adjusting user permissions

Once you've decided to allow memberships on your site, you may want to control how much those members can do when they're logged in. By default, they can't really do that much: just read content and comment on it. But you can give them more power by assigning them to a role and then adjusting those roles on a task-by-task basis. The first step in doing that is going up to the People page, by clicking on People, and then going to look at the permissions. These permissions are broken up so that each row is a specific task on your site, and each column is a different role.

Adjusting user permissions

Once you've decided to allow memberships on your site, you may want to control how much those members can do when they're logged in. By default, they can't really do that much: just read content and comment on it. But you can give them more power by assigning them to a role and then adjusting those roles on a task-by-task basis. The first step in doing that is going up to the People page, by clicking on People, and then going to look at the permissions. These permissions are broken up so that each row is a specific task on your site, and each column is a different role.

You can see those roles by clicking this little button in the upper right-hand corner, and it's the same group as you saw on the previous page: anonymous user, authenticated user, and so forth. Now there are a few roles here that are always going to be there and you can't change. The first one is anonymous user. That's somebody who visits your site and hasn't signed in. The second is authenticated user. That's somebody who has created an account on Drupal Gardens and is now a member of your site. You can learn how people become members by watching the earlier video about user management.

The last kind of role here, site owner, is something that you can't turn on or off. It's the user that was created when you first made your site. It's what's called a super-user, and if you're used to using core Drupal, it's the one that doesn't actually show up. This would normally be hidden, but in Drupal Gardens it's shown. Administrator, blogger, and editor are three roles that you can change, and you can add your own roles as well. One thing to note about the authenticated user is it's anybody who has an account on your site, so that means a blogger is also an authenticated user, as is an editor.

Drupal takes this into account because when you click on that check box for the authenticated user, it turns on all of the ones above it. And then when you uncheck it, it remembers which ones were clicked before, which is very handy. I am going to demonstrate how to turn on and off a permission. Now it should be fairly clear. You simply check the task and the role that you want and then click down at the bottom to save the configuration. But just to show you how it works, I am going to go down to the Node group down here and the Access the content overview page.

I am going to let any authenticated users see that by checking there, scrolling to the bottom, and save permissions. Now, I have another browser window open with my user califanjoe, who is an authenticated user. I am going to take a look at that content page, which I happen to know is at admin/content, and now I can see everything on the site. Now you'll notice I can't do any operations. I can't edit or delete those nodes, but I can at least see them, and I can filter on them, and so forth.

If I go back here and take that away again, go down to Node and take away Access the content overview page, scroll down again, and save the configuration, now if I reload the page as califanjoe, I get nothing. I'm told that access is denied. That's the way that we want it. So that's how you can change individual permissions for members of a given role. But what if you want to move a member from one role to another? For example, let's say that you've been watching califanjoe for a while, and you've gotten to trust him, and you want to give him permission to start a blog.

That's pretty easy. I'll just go back to my Administrative page, click on People, go down to califanjoe, check his box, and then I can add a role. I can say okay, now he's a blogger. Then click Update. I can also do it, as you've seen in an earlier video, by clicking on Edit next to that user and adding the role on that user's profile page. But let's go back to our list of people. I want to point out a user down here that I didn't add. Now explorecalifornia is me, the administrator of this site.

This Gardens admin is something that Drupal Gardens added, and that you can't delete. You'll see there is no edit or delete here. This is for people at Acquia if they need to go in and fix anything on your site, but don't worry. I've never had any experience where they make any sort of changes unless there was something really wrong with the site, and I asked them to do so. But in any case you can't change it, so there's no need to pay any attention to it. Now, let's move on. Let's say that you want to put together a group of permissions that doesn't match any of the roles that already exists. And to take a look at those roles, I'll click on Permissions and then Roles. Nope, that's okay.

You can just add a role. You might remember that we added a content type earlier called Tour. Let's say that we want to allow certain users permission to create those tours, but we don't want them to have any other special roles. That is easy enough. I'm going to call this person a tourmaker, add the role, then go back to Permissions, and I now see tourmaker up here. I could go through, that person already has all of the authenticated user roles, I would go down to, let's see, it's under Node, and allow that person to create or edit tour content. There we go.

I'm actually not going to do that. Again, just to keep the site clean, I'll go back up and delete the role. Simple enough: down here, edit the role, and then delete it, and of course confirm. By the way, this is a great technique for building content on your site--that is, let your users do the work. It's called crowdsourcing, and it's essentially the wealth on which such sites as Yelp and Facebook rest. Watch out, though. If you give the permission too liberally, and you don't monitor your users, then you'll find that trolls and spammers and other vandals will start to abuse it.

I finally want to mention a few things to watch out for when you start playing with roles and permissions. Most important is that you revisit them whenever you turn on a new feature of your site, as you learned how to do in the video about adding and removing functionality. Second, be extremely wary of granting any permissions that have a label next to them that says give to trusted roles only. If we take a look through that look through that permissions list, you'll see that that's quite a few of these tasks. As we scroll down, see in the italics, it says it may have security implications, any other warning like that, be very careful about giving those away because they may allow somebody to actually take over your site.

Third, resist the urge to go wild and create a lot of roles. Only create them when you need to. Otherwise, you might find that you have too many check boxes here, and it becomes more and more confusing to control who can do what.

Show transcript

This video is part of

Image for Drupal Gardens Essential Training
Drupal Gardens Essential Training

65 video lessons · 11823 viewers

Tom Geller
Author

 
Expand all | Collapse all
  1. 29m 56s
    1. Welcome
      1m 39s
    2. Previewing the finished project
      1m 29s
    3. What's new in the late 2011 update?
      5m 28s
    4. What is Drupal?
      5m 8s
    5. What is Drupal Gardens?
      5m 57s
    6. Getting started with Drupal Gardens
      5m 35s
    7. Getting help
      4m 1s
    8. Using the exercise files
      39s
  2. 17m 40s
    1. Using the administrative overlay
      2m 54s
    2. Using the dashboard, toolbar, and shortcut bar
      5m 36s
    3. Touring the newly created site
      3m 55s
    4. Configuring the site
      5m 15s
  3. 59m 47s
    1. Creating and managing content
      11m 11s
    2. Creating and managing content types
      10m 35s
    3. Embedding YouTube videos and other media
      4m 5s
    4. Subscribing to RSS feeds
      4m 49s
    5. Categorizing RSS feeds
      5m 1s
    6. Managing tags and taxonomies
      5m 50s
    7. Creating dynamic pages with simple views
      4m 29s
    8. Creating complex information collections with Views
      8m 59s
    9. Creating image galleries
      4m 48s
  4. 37m 50s
    1. Working with blocks
      10m 26s
    2. Setting up rotating banners
      7m 45s
    3. Understanding menus
      7m 27s
    4. Setting up contact forms
      7m 7s
    5. Adding and removing functionality
      5m 5s
  5. 54m 54s
    1. Managing users
      6m 28s
    2. Adjusting user permissions
      6m 35s
    3. Managing comments
      7m 7s
    4. Slowing spam
      5m 20s
    5. Starting discussion forums
      9m 3s
    6. Creating blogs
      4m 41s
    7. Setting up mailing lists
      4m 50s
    8. Allowing users to rate content
      4m 21s
    9. Using best practices for online clubs
      6m 29s
  6. 44m 35s
    1. Getting feedback with webforms
      6m 14s
    2. Publishing RSS feeds
      6m 40s
    3. Taking advantage of social media
      9m 33s
    4. Emphasizing external links
      2m 44s
    5. Improving search engine optimization (SEO)
      7m 30s
    6. Internationalizing sites
      8m 6s
    7. Tracking site usage with Google Analytics
      3m 48s
  7. 34m 40s
    1. Understanding Drupal themes
      5m 44s
    2. Understanding the Theme Builder
      5m 25s
    3. Switching, saving, and copying themes
      7m 13s
    4. Introducing custom CSS
      6m 51s
    5. Refining selections in the Theme Builder
      5m 48s
    6. Exporting themes
      3m 39s
  8. 48m 31s
    1. Changing the site's color palette
      2m 32s
    2. Changing the site's main logo and favicon
      5m 22s
    3. Changing the column number and arrangement
      5m 7s
    4. Adding background colors and images
      6m 29s
    5. Changing element spacing and borders
      6m 11s
    6. Adjusting typography
      4m 24s
    7. Using fonts from outside sources
      5m 7s
    8. Inserting raw CSS code into themes
      6m 57s
    9. Adding visual effects with JavaScript libraries
      6m 22s
  9. 14m 18s
    1. Finessing theme design
      7m 51s
    2. Eight ideas for modifying themes
      6m 27s
  10. 23m 38s
    1. Monitoring sites
      4m 11s
    2. Duplicating and deleting sites
      4m 23s
    3. Adding custom domains
      3m 48s
    4. Using exported sites outside of Drupal Gardens
      3m 46s
    5. Hosting exported Drupal Gardens sites
      7m 30s
  11. 51s
    1. Goodbye
      51s

Start learning today

Get unlimited access to all courses for just $25/month.

Become a member
Sometimes @lynda teaches me how to use a program and sometimes Lynda.com changes my life forever. @JosefShutter
@lynda lynda.com is an absolute life saver when it comes to learning todays software. Definitely recommend it! #higherlearning @Michael_Caraway
@lynda The best thing online! Your database of courses is great! To the mark and very helpful. Thanks! @ru22more
Got to create something yesterday I never thought I could do. #thanks @lynda @Ngventurella
I really do love @lynda as a learning platform. Never stop learning and developing, it’s probably our greatest gift as a species! @soundslikedavid
@lynda just subscribed to lynda.com all I can say its brilliant join now trust me @ButchSamurai
@lynda is an awesome resource. The membership is priceless if you take advantage of it. @diabetic_techie
One of the best decision I made this year. Buy a 1yr subscription to @lynda @cybercaptive
guys lynda.com (@lynda) is the best. So far I’ve learned Java, principles of OO programming, and now learning about MS project @lucasmitchell
Signed back up to @lynda dot com. I’ve missed it!! Proper geeking out right now! #timetolearn #geek @JayGodbold
Share a link to this course

What are exercise files?

Exercise files are the same files the author uses in the course. Save time by downloading the author's files instead of setting up your own files, and learn by following along with the instructor.

Can I take this course without the exercise files?

Yes! If you decide you would like the exercise files later, you can upgrade to a premium account any time.

Become a member Download sample files See plans and pricing

Please wait... please wait ...
Upgrade to get access to exercise files.

Exercise files video

How to use exercise files.

Learn by watching, listening, and doing, Exercise files are the same files the author uses in the course, so you can download them and follow along Premium memberships include access to all exercise files in the library.


Exercise files

Exercise files video

How to use exercise files.

For additional information on downloading and using exercise files, watch our instructional video or read the instructions in the FAQ.

This course includes free exercise files, so you can practice while you watch the course. To access all the exercise files in our library, become a Premium Member.

Join now "Already a member? Log in

Are you sure you want to mark all the videos in this course as unwatched?

This will not affect your course history, your reports, or your certificates of completion for this course.


Mark all as unwatched Cancel

Congratulations

You have completed Drupal Gardens Essential Training.

Return to your organization's learning portal to continue training, or close this page.


OK
Become a member to add this course to a playlist

Join today and get unlimited access to the entire library of video courses—and create as many playlists as you like.

Get started

Already a member?

Become a member to like this course.

Join today and get unlimited access to the entire library of video courses.

Get started

Already a member?

Exercise files

Learn by watching, listening, and doing! Exercise files are the same files the author uses in the course, so you can download them and follow along. Exercise files are available with all Premium memberships. Learn more

Get started

Already a Premium member?

Exercise files video

How to use exercise files.

Ask a question

Thanks for contacting us.
You’ll hear from our Customer Service team within 24 hours.

Please enter the text shown below:

The classic layout automatically defaults to the latest Flash Player.

To choose a different player, hold the cursor over your name at the top right of any lynda.com page and choose Site preferencesfrom the dropdown menu.

Continue to classic layout Stay on new layout
Exercise files

Access exercise files from a button right under the course name.

Mark videos as unwatched

Remove icons showing you already watched videos if you want to start over.

Control your viewing experience

Make the video wide, narrow, full-screen, or pop the player out of the page into its own window.

Interactive transcripts

Click on text in the transcript to jump to that spot in the video. As the video plays, the relevant spot in the transcript will be highlighted.

Are you sure you want to delete this note?

No

Your file was successfully uploaded.

Thanks for signing up.

We’ll send you a confirmation email shortly.


Sign up and receive emails about lynda.com and our online training library:

Here’s our privacy policy with more details about how we handle your information.

Keep up with news, tips, and latest courses with emails from lynda.com.

Sign up and receive emails about lynda.com and our online training library:

Here’s our privacy policy with more details about how we handle your information.

   
submit Lightbox submit clicked
Terms and conditions of use

We've updated our terms and conditions (now called terms of service).Go
Review and accept our updated terms of service.