When a user is part of a group, he has a role in that group. This role can be member, profile administrator, founder, etc. Based on the roles a specific user has, the user is allowed to take some actions and not allowed to take other on that specific group. The permissions for group roles are the following:
- Edit profile - editing name and description of the group
- Destroy profile - delete the group
- Manage memberships - add members, remove members, assign roles to members
- Post content - create and edit articles directly in the group's CMS
- Edit profile design - change template (number of columns and position of sideboxes)
- Manage products - manage the products of the group (in the case of formal groups, that can exhibit their products)
- Manage friends - manage friends/contacts (not applicable to groups)
- Validate enterprise - validation of formal groups
- Perform task - accept/reject articles, and process pending requests
- Moderate comments - remove comments in articles of the group
- Edit appearance - change theme (colors/images)
- View private content - view private content of the group (INTRANET)
The environment also has roles: a user can be an administrator, a supervisor, etc. Based on the roles a given user has, they are allowed or not to take actions in the environment level. Each environment-level roles can be granted with the following permissions:
- Manage environment validators - assign formal group validation rights to already validated formal groups
- Edit environment design - change the default appearance of the environment (theme, template)
- Edit environment features - enable/disable features in the environment
- Manage environment categories - add/remove/edit categories (not applicable to zen3)
- Manage environment roles - create/edit/remove roles themselves.
- View environment admin panel - view the administration panel (e.g. having the "Administrator" link in the user menu) .
Managing Roles on zen3
To manage roles, open your user menu (in the top bar), and choose the "Administrator" option. This option will only appear to administrator users. In the admin panel, choose "Manage User roles". You can either edit existing roles to change the permissions, or create new roles and choose the set of permissions that members of that role have.
The administrator can give or take permission from roles individually, e.g., each permission is independent from each other. A role can have any combination of the permissions available for their role type (group-level role or environment-level role).