19. Access Control

Controlling which users have access to an application and restricting actions. To recap the steps in the video:

Restrict access to app

Open the configuration form for the app Contact Manager
1. Open the section Access Permissions
2. Untick All Users Can View Application
3. Save your changes
To test this:
1. Create a user (remember you need to go into the Full Repository browser to do this)
2. Don't forget to tick the Enabled flag for the user
3. Add the User Group App User to the user
4. Logout, and log back in as this user
5. You should now be able to see the Contact Manager app

Add access to app

Log back in as your modelling user
Open the repository browser under the application Contact Manager
Add a User Group
1. Call the user group Contact User and apply your changes
2. Open the section Applications, and bring up the list of applications
3. Drag in the application Contact Manager
4. Still in the user group configuration form, add your test user
Log back in as your test user, and check that now you can access the Contact Manager app.

Create admin level access

Log back in as your modelling user
Go into the configuration for the button Import, follow the quick link to the custom action that backs this
1. In the action configuration form, open the section Access Permissions
2. Untick All Users Can Run Action
Open the repository browser under the app Contact Manager
Add a User Group
1. Call the user group Contact Manager Admin and apply
2. Open the section Stream Actions
  - Bring up the list of actions
    - In the repository browser for actions, you will find all the actions you need under the stream ContactManager
  - Drag the actions for all administration functions into the user group i.e. Import
Create a test admin user
1. Add this user to the user groups:
  - App User
  - Contact User
  - Contact Admin

Now try logging in with both the test contact user, and the test contact admin. Ensure that the contact user cannot see the administration functions, but the admin user can.