system-permissions-variables

Content Permissions

As a security measure, Magento includes a whitelist of content that can be referenced by custom modules and extensions. Some implementations such as blog extensions, reference content that can be accessed only if the directive is in the whitelist. For example, a module or extension might include the following markup tags on CMS pages or in email templates. {{config path=”web/unsecure/base_url”}} …

permissions-new-user-role

Step 2: Add the New User

1. On the Admin menu, select System > Permissions > Users. 2. Click the Add New User button. 3. In the Account Information section, do the following: a. Assign a User Name to the account. The User Name should be easy to remember. It is not case-sensitive. For example, if your user name is “john,” you can also log in …

magento-role-name

Step 1: Define the Role

1. On the Admin menu, select System > Permissions > Roles. Then in the upper-left corner, click the Add New Role button. 2. In the Role Information section, enter a descriptive Role Name. 3. In the panel on the left, select Role Resources. 4. In the Roles Resources section, select the checkbox of each Admin Resource that you want to …

permissions-add-new-role

Creating Custom Roles

To give someone restricted access, the first step is to create a role with the appropriate level of permissions. After the role is created, you will add the new user, set up the login credentials, and assign the role to the user account. After the role is established, you can create new Administrator users at any time, and assign the …

permissions-new-user-role

Creating New Users

When your store is first installed, your login credentials have with full administrative access. As a best practice, one of the first things you should do is to create another user account with full Administrator permissions. That way, you can use one account for your everyday Administrative activities, and reserve the other as a “Super Admin” account in case you …

magento-add-users-roles

Admin Permissions

Magento uses roles and permissions to create different levels of access to the Admin. When your store is first set up, you receive a set of login credentials for the Administrator role, with full permissions. However, you can restrict the level of permissions on a “need to know” basis for other people who work on your site. For example, a …