Wednesday 01 December 2004 4:13:58 pm
Hi all, Ive read numerous posts with people asking how to restrict content access, and would really just like to sense check Im on the right path (and if not have someone point me in the right direction). In my case, I have an intranet site, with some hundred users and some hundred pieces of content. All the site is accessible to all standard users but there are a few pieces of content that are restricted. The different pieces that are restricted will be restricted to different users/groups. The pieces of content are not all in the same section either - they are spread through the site.
My question is whats the best way of going about implementing this.
My understandings so far:
There is no exclusion list - ie I can't define a section to be the entire site, except a few nodes. I also cant define a role to give acccess to say all the site except a few nodes. One way of implementing the restrictions is to create a overly complex role, which lists every single part of the intranet except the restricted bits I have. This seems to be to just creating a nightmare for administration. So from this Im thinking, should I create a new class group, and put some new/copy content classes in it. Then I can create all restricted content from the classes in that new class group. This would mean that I can have everyone being able to read the normal content classes and then implement specific rules for the other content classes.
Does this make sense? Am I over complicating things or missing something out? feedback appreciated. cheers Arran
|