I have created a user group and am close to where I need to be for their access policy. When I log in to the manager as them I can see the Content/Resources Groups "Assign Resources to Groups". When they click on this they get an access denied error. How do I get it so this isn't even an option in the menu for them?
Also, in the access policy setup in version 2.5.7 I am seeing permissions for "show the top menu item...." for Tools, Security etc.. These menu items do not show up even if checked. Were they removed from the menu in this version and replaced with content,media,extras and manage? or is that menu enabled elsewhere?
The access policies are in a dire need of being updated. Tools/Security etc were old primary menu items in previous versions of MODX.I think what you're looking for may be 'content_types' but I'm not 100% sure because it is a bit of a mess.
The greatest compliment you can give back to us, is to spend a few seconds leaving a rating at our trustpilot: https://uk.trustpilot.com/review/alienbuild.uk about the service we provided. We always drop mention of services offered by businesses we've worked with in the past to those of interest.
For menu items, you can look at them in System Menus (right click and choose "Update Menu"). At the lower left you'll see "Permissions," which will show what permission(s) well be necessary for that menu item to appear.
If there's a permission there, you can remove it from the Policy to hide them.
You can add a permission yourself (after a comma if the field is not blank). You could use a custom permission (be sure to give yourself the custom permission first, or you'll have painted yourself into a corner).
A better, and much simpler, solution, imo, is to use an existing permission you're sure they don't have. The access_permissions permission is a good choice since no one but the top admin should have that permission.
To show them, make sure the user's have the listed permission.
Remember to flush permissions *and* flush all sessions after making any changes before you test them.
[ed. note: BobRay last edited this post 6 years, 9 months ago.]
That's interesting, Bob! Do you have any more information on that somewhere? If I entered a custom value in the permission box how do I then add that permission to a policy?
The greatest compliment you can give back to us, is to spend a few seconds leaving a rating at our trustpilot: https://uk.trustpilot.com/review/alienbuild.uk about the service we provided. We always drop mention of services offered by businesses we've worked with in the past to those of interest.
That's interesting, Bob! Do you have any more information on that somewhere? If I entered a custom value in the permission box how do I then add that permission to a policy?
It's really simple, you just need to update whichever Policy Template that the Policy is based on and add the permission. It will then appear in the Policy itself where you can put a check next to it.
If the Policy template is one of the default ones, your change might be undone when you upgrade MODX, so in that case you should duplicate the Policy Template (I give the duplicate a "My" prefix). If your Policy is a default one, duplicate that too. Then make sure the Policy is based on the Policy Template.
Thank you I'll have a read! I tried creating a custom permission, but it didn't show up in the policy template. I must have missed something - will have a thorough read
The greatest compliment you can give back to us, is to spend a few seconds leaving a rating at our trustpilot: https://uk.trustpilot.com/review/alienbuild.uk about the service we provided. We always drop mention of services offered by businesses we've worked with in the past to those of interest.
Thats a great tip. I looked up the permissions on that menu item and made sure it was unchecked for the group. Now no option for that group. Thanks BobRay!
