4.5. Give access rights for authenticated users


When a visitor logs in, then the anonymous role changes through such authenticating to authenticated role or to some other role, which is active role, for such user.
By default the authenticated user may not be even able to log out, because by default he/she has no access rights for the module method [path-to-your-site]/user/logout or for any other module method. The system would log out an user, when session expires which is by default in two hours after last activity.

In this manual it is explained, what are the most important module method pages, which you should consider giving access rights for an authenticated user and how to give such access rights.

Manage authenticated roles

Below we are mentioning authenticated roles (plural). By default there is one authenticated role, which is called "authenticated". You may add other authenticated roles - for example a role editor for the users, who should have access to add and edit Page module entries. See URL [path-to-your-site]/admin/add-role and [path-to-your-site]/admin/list-roles for such role managing.

List of some method pages, related to authenticated users

The menu My Account, which was explained in the previous manual, has links to some module method pages, which you should consider, whether to give access right to authenticated roles or not.

The menu My Account links to following method pages:

Next we list some other URLs, which may be linked from the previous method pages or which should be otherwise considered too to be accessable by authenticated users.

These other URLs are:

URL structure of module method pages

As you may know already from other manuals, the URL structure in Allmice CMS has following parts, separated by slashes (/).
The first part [path-to-your-site] in the previous examples is the URL, where your website has been installed, it is front page URL.
Next part, for example "user" is referring to the module. Third part, for example "edit-email-address", is referring to the module method. If there is no third part, for example [path-to-your-site]/profile, then this is referring to the index method of the corresponding module. Fourth part (if any) is referring to the database entry (item) id of the corresponding module.

How to give access rights to module method pages

To give access rights to all or some of these module methods for authenticated roles, go to URL:
[path-to-your-site]/system-manager/manage-access, select the corresponding module and the corresponding authenticated role and tick the methods, which you wish to give access rights to. Then scroll down and click the button "Save changes".

Previous: 4.4. Prepare content for authenticated visitors | Next: 5. Registering new users
Users and messages
1. Modules for managing users and messages
2. Sending automatic emails
2.1. Configure email authentication details
2.2. Manage message templates
3. Authenticating
4. Adjust the website for authenticated users
4.1. Access rights for unauthenticated visitors
4.2. Adjustable links on user block
4.3. Change labels and other language phrases
4.4. Prepare content for authenticated visitors
4.5. Give access rights for authenticated users
5. Registering new users
6. Multiple email addresses and user account recovery
7. Manage contact forms and emails
8. Manage postal addresses
9. User profile