Hyland Community
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Make options in header 'admin-only' in Alfresco 4.2d

ebogaard
Champ on-the-rise
Champ on-the-rise

‎09-02-2013 11:46 AM

In 4.2c and older, I was able to make Header (sub)items admin-only by enclosing items between <#if user.isAdmin> and </#if>.
For example the Create Site-option was editable like that in: tomcat/webapps/share/WEB-INF/classes/alfresco/site-webscripts/org/alfresco/modules/header/sites.get.html.ftl

Also, to make the Repository button admin-accessible only, you could set "permission=admin" to the right option in: tomcat/webapps/share/WEB-INF/classes/alfresco/share-config.xml

In 4.2d, these don't work anymore and I can't find where I can influence this behaviour.
Setting <legacy-mode-enabled> to 'true', which should make the pre-4.2d way work again, but this made things far worse: the Header bar layout was all wrong.

Hope someone can point me in te right direction!
Labels:
0 Kudos
22 REPLIES 22

kart
Champ in-the-making
Champ in-the-making

‎12-17-2013 11:25 AM

Hi Dave,

First, I would like to thank you for the very useful information you provided on the Alfresco forum and on your blog.

I'm new to Alfresco, I just installed the 4.2e Community and did few modifications such as hiding the Repository link from the header menu for users that will be external to our company.

In your post of September 2nd, you wrote:
<blockquote>…it should be noted that even if the Repository link is removed, it is still accessible via a direct URL and all users (by default) do have read access to Company Home.</blockquote>

Is there a way to disable this link for a user group?  For additional security, I would prefer the users that do not have access to the Repository link to not be able to manually type the URL to bypass the restriction to get access to the repository. 

Thank you
Stephane
0 Kudos

ddraper
World-Class Innovator
World-Class Innovator
In response to kart

‎12-18-2013 04:25 AM

Hi Stephane,

Just to clarify, when I say accessible via direct link… authentication is still required (an unauthenticated user wouldn't be able to view the page). Also, the user would still be restricted by their usual permissions - so in most cases they'd just be be able to read repository information (apart from nodes they do not have access to, e.g. private sites, etc). If you want to completely prevent a user from accessing the page (even via typing a URL into the browser address bar) then you'll need to modify the webapps/share/WEB-INF/classes/alfresco/site-data/pages/repository.xml to change the <authentication> setting from user to admin (this will restrict anyone without admin privileges).

Hope that helps,
Regards,
Dave
0 Kudos

kart
Champ in-the-making
Champ in-the-making
In response to ddraper

‎12-18-2013 08:56 AM

Hi Dave,

Thank you very much for the quick reply and for the useful information. Since an authentication is required to access the page, then I will just set the access rights as required for all pages (or links) accessible from the repository page and this will be perfect.

Thank you again,
Stéphane
0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC
li.common.scroll-to.top