Documentation

Permissions Framework Integration

Available: Liferay DXP/Portal 7.4+

When an Object is created, it is integrated automatically with Liferay’s Permissions framework. This means you can assign application and resource permissions to manage user access to individual Objects and their entries. With role-based access control, you can ensure only appropriate users can view and use your application’s data.

When defining role permissions, active Objects appear according to their scope and panel category key.

Application Permissions

Application permissions grant permission to perform general application-related operations and do not include resource-related permissions.

Custom Objects include the following standard application permissions according to their defined scope.

Permission

Description

Access in Control Panel (Company Scope Only)

Access the Object in the Global Menu

Access in Site and Asset Library Administration (Site Scope Only)

Access the Object in the Site Menu or Asset Library

Configuration

View and set the Object’s configuration options

Permissions

View and modify the Object’s permissions

Preferences

View and set the Object’s preferences

View

View the Object’s application page

Note

For Objects scoped to Site, you can also determine whether an application or resource permission is granted for all Sites or only specific Sites.

Resource Permissions

Resource permissions grant specific abilities related to application resources. Some of these permissions grant permission to perform operations on database entities (i.e., model resources). Others grant permission to perform resource-related operations in an application context (e.g., create a new resource entity).

Each Object also has the following resource permissions.

Actions on Database Entities

Permission

Description

Delete

Delete an Object entry

Permissions

View and modify permissions for individual Object entries

Update

Update an Object entry

View

View an Object entry

Managing Permissions for Individual Object Entities

Available Liferay DXP 7.4 U10+ and Liferay Portal 7.4 GA14+

With custom Objects, you can manage permissions for individual database entities to control access to Object data.

Follow these steps:

  1. Navigate to the desired custom Object.

  2. Click on the Actions button (Actions Button) for the desired entity and select Permissions.

    Click the Actions button for the desired entity and select Permissions.

  3. Use the checkboxes to grant database entity permissions to the desired desired roles.

    Note

    Permissions defined at the Roles admin level override permissions defined at the entity level.

    Use the checkboxes to assign permissions to the desired roles.

  4. Click Save.