Access to applications and components
Overview
Use the Roles portlet to specify the levels of access that members in the role have to work with the application, its pages, its membership, and its components:
- composite application and its pages
- application components
Access to applications and pages
All members of a composite application can view application pages, regardless of their assigned roles. For each role that you define for an application, we can choose one or both of the following additional permissions for Application and Page Access Settings :
- Also allow members of this role to edit the application and all pages in the application.
- Also allow members of this role to manage the membership of the application.
Therefore, all application membership roles are derived from one of three application role types used by portal access control:
- Application manager
- Membership role permits editing the application and all pages in the application as well as managing the membership of the application.
- Application membership manager
- Membership role permits managing the membership of the application. The role does not permit editing the application and its pages.
- Application user
- Membership role permits using the application. The role does not permit any level of manager access.
The name of an application membership role does not always imply the permission provided by the underlying application role type. To verify the precise level of access that an application membership role provides, open the Roles portlet in the application: From the application page menu, click Manage Application Roles.
For more information about how application role types provide the minimum required permission for sensitive operations on applications, refer to Access rights.
The following table describes the access levels that are available for an application and its pages based on the default membership roles, Administrators and Users. Create new membership roles for an application by customizing these predefined roles.
Object
Default Membership Role
Access Provided
Application
Administrators
Administrators own the application (Application Owner).
By default, this role grants the additional permission Also allow members of this role to edit the application and all pages in the application ; this option provides Application Manager access to the application and to every page of the application.
By default, this role also grants the permission Also allow members of this role to manage the membership of the application ; this option provides Membership Manager access.
Users
Users can view all pages of the application and use the application components according to the specified component access levels.
If Users have permission to use application templates, they can also create applications from templates.
By default, Users do not have the additional access to edit the application and its pages and to manage application membership. We can specify these additional access levels when we customize this membership role.
Page
Users
All members of an application can view the pages of an application, regardless of their assigned roles.
Users can edit application pages if they are assigned a role that grants the additional permission Also allow members of this role to edit the application and all pages in the application.
Users assigned a role that does not allow this additional permission cannot edit the pages of the application.
Access to application components
Application users will be able to work with the components that are deployed on the pages of an application according to the level of access that you select in the Component Access Settings table of the Roles portlet. Each application component provides its own roles and the access levels for us to select; each access level provides a simple text description. For example, a Team Tasks component might provide the following access levels and descriptions:
Reader Can read tasks User Can read, create, and own tasks Administrator Can read, create, and own tasks. Can edit and delete all tasks.
Related concepts
Application access
Roles and access levels
User access to templates and applications
Composite applications