help to better help you:
Please: add always Joomla / JEM version and details to your posts, so we can try to reproduce your issue!
[info] how to limit Backend-access
[info] how to limit Backend-access
10 years 10 months ago - 10 years 10 months ago
It can happen that you want to give an user backend-access but you only want them to show JEM and the other stuff should be hidden. So how would/can you do that?
maybe this info can help a bit.
- install JEM quickicon-plugin, this icon will be shown to the users when he is logged in in the backend.
- Go to Users->Groups
- Add Usergroup (group parent="public")
- Go to Global Configuration->Permission->*createdgroup*
- Select setting for AdminLogin
- Go to Users->AccessLevels->special
- check *createdgroup*
- Go to JEM-controlpanel
- Click at the Options button
- select permission for the *createdgroup*
- click at the save&close button after that
- Go to users->usermanager
- select your user and add the *createdgroup*
At this point the user will have access to the backend and it will be limited but the user will see an option to edit his profile. This is default but it can be changed by editing PHP files.
Links in site
In there you will find a link to edit the profile
it can be stripped by modifying:
- administrator/modules/mod_menu/tmpl/default_enabled.php
take a look and you'll see the links, if you don't want it to appear disable it.
Quickicon button, profile
This can be changed in:
- administrator/modules/mod_quickicon/helper.php
in there you'll see the link to the profile and access = true. This will mean the button is always shown. Basicly you can disable that array to have it not appear.
//
With accesslevels you can choose only the creategroup but doing so
won't show anything in the back, so that's why we're selecting special.
The reason for not showing is that the backend modules are shown to the group "special"
maybe this info can help a bit.
- install JEM quickicon-plugin, this icon will be shown to the users when he is logged in in the backend.
- Go to Users->Groups
- Add Usergroup (group parent="public")
- Go to Global Configuration->Permission->*createdgroup*
- Select setting for AdminLogin
- Go to Users->AccessLevels->special
- check *createdgroup*
- Go to JEM-controlpanel
- Click at the Options button
- select permission for the *createdgroup*
- click at the save&close button after that
- Go to users->usermanager
- select your user and add the *createdgroup*
At this point the user will have access to the backend and it will be limited but the user will see an option to edit his profile. This is default but it can be changed by editing PHP files.
Links in site
In there you will find a link to edit the profile
it can be stripped by modifying:
- administrator/modules/mod_menu/tmpl/default_enabled.php
take a look and you'll see the links, if you don't want it to appear disable it.
Quickicon button, profile
This can be changed in:
- administrator/modules/mod_quickicon/helper.php
in there you'll see the link to the profile and access = true. This will mean the button is always shown. Basicly you can disable that array to have it not appear.
//
With accesslevels you can choose only the creategroup but doing so
won't show anything in the back, so that's why we're selecting special.
The reason for not showing is that the backend modules are shown to the group "special"
Last edit: 10 years 10 months ago by Bluefox.
Please Log in or Create an account to join the conversation.
Re: [info] how to limit Backend-access
10 years 10 months ago
Thanks Bluefox.
But keep in mind:
Using access level "special" means that user will also see on frontend all things (categories, articles, menu items, ...) set to this access level.
Also hiding links as you suggest by patching modules does not deny user from accessing those things. He only needs / find out the right url themself.
So you should be carefully giving users access to backend. And try it intensive with a test user (incl. links he can't see but you as admin).
Better: Advance this user to an admin with contract. So you are guarded and have an additional ressource for all your work.
But keep in mind:
Using access level "special" means that user will also see on frontend all things (categories, articles, menu items, ...) set to this access level.
Also hiding links as you suggest by patching modules does not deny user from accessing those things. He only needs / find out the right url themself.
So you should be carefully giving users access to backend. And try it intensive with a test user (incl. links he can't see but you as admin).
Better: Advance this user to an admin with contract. So you are guarded and have an additional ressource for all your work.
Please Log in or Create an account to join the conversation.
Re: [info] how to limit Backend-access
10 years 10 months ago
@Hoffi
You've some good point there
(didn't think of those things)
About the usergroup "special": it's possible to use the newly created group but in that case you have to redefine modules etc to point visible to that group.
You've some good point there
(didn't think of those things)
About the usergroup "special": it's possible to use the newly created group but in that case you have to redefine modules etc to point visible to that group.
Please Log in or Create an account to join the conversation.