IntroductionIntroduction
  InstallingInstalling
  HandlingHandling
  Virtual serversVirtual servers
  ModulesModules
  FilesystemsFilesystems
  RXML tagsRXML tags
  GraphicsGraphics
  ProxyProxy
  Miscellaneous modulesMiscellaneous modules
  Security considerationsSecurity considerations
  ScriptingScripting
  DatabasesDatabases
  LDAPLDAP
  SiteBuilderSiteBuilder
  Access ControlAccess Control
    <Users and groups>Users and groups<Users and groups>Users and groups
    <User databases>User databases<User databases>User databases
    <Protection points>Protection points<Protection points>Protection points
    <Protection points in SiteBuilder>Protection points in SiteBuilder<Protection points in SiteBuilder>Protection points in SiteBuilder
    <Adding protection points>Adding protection points<Adding protection points>Adding protection points
    <Permissions>Permissions<Permissions>Permissions
    <Protection classes>Protection classes<Protection classes>Protection classes
  IntraSeekIntraSeek
  LogViewLogView
  FrontPageFrontPage
  UpgradingUpgrading
  Third party extensionsThird party extensions
  PortabilityPortability
  Reporting bugsReporting bugs
  AppendixAppendix
 
Protection points in SiteBuilder

SiteBuilder automatically adds a number of protection points with separate protection classes which are used to control access to the different parts of SiteBuilder.

A typical editor would need write permission for Content Editor, at least one work area and one or more Dir or File classes to be able to create or edit files.

For a public site, the group Everyone needs read permission to a work area and one or more Dir or File classes.

Access Control
This controls permission for the access control interface. Read permission is required to be able to see the access control information as well as Access Control tab itself. Write permission is needed to make any changes to the access control information.

Content Editor
Controls access to the content editor, the graphical interface of SiteBuilder. To change anything, edit files, changing permissions or settings, in the SiteBuilder, write permission for this protection class is required.

Dir: /
This controls the access to the files and directories of the site. It is also possible to create new protection points for single files or directories. A protection point for a directory protects all files and subdirectories of that directory, unless a file or subdirectory has a protection point of its own. Thus the protection point for Dir: / will protect all files and directories until protection points for other directories and/or files are created.

New protection points for files and directories are created by the Add protection point button under the Files tab.

The group Everyone should have read permission for Dir: / on a public site.

Plugin: IntraSeek
Users with write permission to this protection point will be able to configure IntraSeek under the Plugins tab. This protection point will be generated automatically when the IntraSeek module is installed and will then copy the permissions form the Content Editor protection point.

Plugin: LogView
Users with read permission to this protection point can view statistics using LogView under the Plugins tab. Users with write permission can configure LogView. This protection point will be generated automatically when the LogView module is installed and will then copy the permissions form the Content Editor protection point.

Work area administration
To be able to create a new work area or change settings for the current one, write permission is required for this protection class.

Work area: Main
The Main work area is created automatically when setting up SiteBuilder. It controls access to the files in the Main work area. Whenever a new work area is created, another protection class is also created for it.

The protection point for a work area is combined with the protection point for a file, to find out what permission a user has to a file in a certain work area. The combined permission equals the lowest permission of the two combined protection points. Thus a user will have read permission to a file in a work area she has read permission to, eventhough she has write permission to the protection point protecting the actual file.
Editors need write permissions for at least one work area to be able to edit files.

To make a site accessible in public the group Everyone needs read permissions to the work area containing the live site. Which files will be accessible is controlled by Dir: and File: protection classes.