We launched new forums in March 2019—join us there. In a hurry for help with your website? Get Help Now!
MODX Community Forums Archive

Answered Revo Security for Content Editor

    • 20135
    • 188 Posts
    moniarde Reply #1, 8 years, 3 months ago
    Hi, I know this sounds simple, but for some reason it's just not clicking, and I can't work out why.

    I want to create a user who can log into the Manager and edit a couple of resources in a resource group without being able to access anything else. I tried the Content Editors Policy, but that hid all of the resources in the tree, including the resources in the specified resource group. How can I set up a basic content editor's login? (I've seen this post (http://forums.modx.com/index.php?action=thread&thread=56747&i=1) and tried what BobRay suggested, but I couldn't see the resources in the tree).

    Assistance from anyone would be very helpful.

    This question has been answered by BobRay. See the first response.

    • discuss.answer
      • 3749
      • 24,544 Posts
      BobRay Reply #2, 8 years, 3 months ago
      Your user's User Group needs a Resource Group ACL entry with a context of 'mgr' to give access to the Resource Group with the two resources (with a Policy of Resource). The user also needs a Context Access ACL entry giving access to the 'mgr' context with a policy of Content Editor.

      You've probably done those two, but the user's User Group also needs a Context Access ACL entry to the 'web' context, also with a policy of Content Editor. Without that the Resource tree will be empty because they don't have access to the 'web' context, which the resources are in.
        Did I help you? Buy me a beer
        Get my Book: MODX:The Official Guide
        MODX info for everyone: http://bobsguides.com/modx.html
        My MODX Extras
        Bob's Guides is now hosted at A2 MODX Hosting
        • 20135
        • 188 Posts
        moniarde Reply #3, 8 years, 3 months ago
        Thanks for replying BobRay.

        So I can see the resources in the tree now, but I can see all the resources in the tree, not just those in the Resource Group. How can I hide the other resources?
          • 3749
          • 24,544 Posts
          BobRay Reply #4, 8 years, 3 months ago
          Connect those resources you want to hide to the Administrator group with a Resource Group Access ACL entry (policy of Resource, context of 'mgr').

          As long as the content editors are not members of the Administrator group (and no ACL entry gives them access), the resources will be hidden from them.

          There's a 50-minute video here where I explain how it works.
            Did I help you? Buy me a beer
            Get my Book: MODX:The Official Guide
            MODX info for everyone: http://bobsguides.com/modx.html
            My MODX Extras
            Bob's Guides is now hosted at A2 MODX Hosting
            • 20135
            • 188 Posts
            moniarde Reply #5, 8 years, 3 months ago
            Brilliant, thanks BobRay. And I will definitely check out that video - I've been trying to understand Revo Security for years, just when I think I've got it, something doesn't work and I'm back to square 1.
              • 3749
              • 24,544 Posts
              BobRay Reply #6, 8 years, 3 months ago
              Glad I could help. smiley
                Did I help you? Buy me a beer
                Get my Book: MODX:The Official Guide
                MODX info for everyone: http://bobsguides.com/modx.html
                My MODX Extras
                Bob's Guides is now hosted at A2 MODX Hosting