This documentation refers to an older version of CiviCRM (3.4 / 4.0). The current stable version is 4.1. Please introduce all documentation changes and new material here.

Skip to end of metadata
Comment: Migrated to Confluence 4.0
Go to start of metadata
This page refers to CiviCRM 3.4 and 4.0, current STABLE version.

Documentation Search

CiviCRM 3.4 and 4.0 Documentation

Support and Participation

Developer Resources

CiviCRM books!

Make sure to check out the FLOSS Manual Understanding CiviCRM as well! You can also support this project by ordering a hard copy.

Or support us by buying an eBook or hard copy of Using CiviCRM from Packt Publishing.

Can I define access control for groups/roles?

  1. Let's assume you want to restrict folks who can view/edit all contacts
    in CiviCRM Group 'Group 2'
  2. Put all the folks who can only View Group 2 Contacts in a CiviCRM
    Group 'ACL View Group 2'
  3. Put all the folks who can Edit Group 2 Contacts in a CiviCRM Group
    'ACL Edit Group 2'. Note that Edit implies View
  4. Create two ACL Roles ' ACL View Group 2 Role' and 'ACL Edit Group 2 Role'
  5. Assign the above ACL Roles to the corresponding CiviCRM Groups
  6. Create an ACL giving ' ACL View Group 2 Role' 'View' access on 'Group 2'

QUESTION: Can you restrict folks who can NOT view/edit contacts in 'Group 2'?

RESPONSE: Currently 'no' primarily for two reasons:

  1. We do not support the 'deny' acl
  2. We dont really have a 'not' operator implemented in search

[Source. ]
Labels
  • None