Role Mappings

Users only sees the items that they have been granted access to based on the permissions granted to the Role they have been assigned to. The role mappings configuration file defines the mapping between the group that the user belongs to and the studio authoring role. To modify the role mappings, click on siteConfig from the bottom of the Sidebar, then click on Configuration and select Role Mappings from the dropdown list.

Configurations - Open Role Mappings

Sample

/cstudio/config/sites/SITENAME/role-mappings.xml
 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
<?xml version="1.0" encoding="UTF-8"?>
<!-- role-mappings-config.xml

    This file maps groups to roles.

    The structure of this file:

    <role-mappings>
        <groups>
            <group name="site_admin">
                <role>admin</role>
            </group>
            <group name="site_developer">
                <role>developer</role>
            </group>
            <group name="site_author">
                <role>author</role>
            </group>
            <group name="site_publisher">
                <role>publisher</role>
            </group>
            <group name="site_reviewer">
                <role>reviewer</role>
            </group>
        </groups>
    </role-mappings>


    Please note that by default, sites are created with the groups and roles above. However, if LDAP authentication
    is configured, additional groups will be automatically created for the site as site members sign in via LDAP.
    Those new groups can then be mapped to roles in this file. This then allows LDAP managed users to automatically
    get roles within a site based on their LDAP group membership.

-->
<role-mappings>
    <version>2</version>
    <groups>
        <group name="site_admin">
            <role>admin</role>
        </group>
        <group name="site_developer">
            <role>developer</role>
        </group>
        <group name="site_author">
            <role>author</role>
        </group>
        <group name="site_publisher">
            <role>publisher</role>
        </group>
        <group name="site_reviewer">
            <role>reviewer</role>
        </group>
    </groups>
</role-mappings>

Description

/role-mappings/groups/group@name

Name of the user group

/role-mappings/groups/role

Name of authoring role that group will map to