Configure a user group policy
To configure Content Hub, you must either be a superuser or have the necessary permissions granted to you through user group policies.
A user group policy consists of rules, conditions, and permissions. Every Sitecore Content Hub user group has at least one user policy. The policies assigned to a user group determine what the members of that group can access and do throughout Content Hub. When you define multiple rules, an OR clause is used. When you use multiple conditions, an AND clause is used. You can combine user group policies when a user is a member of multiple user groups.
All user group policies assigned to a user group apply to all the members of the group, including each newly added member.
To create a user group policy, you must do the following:
-
Create a rule for entities for a user group
-
Add conditions to a rule
-
Define permissions for a rule
-
Configure rules on portal pages
-
Add privileges to a user group
-
Assign group member security
If you modify an existing user group policy, clear the cache to verify that your changes have been applied.
Create a rule for entities for a user group
To create a rule for entities for a user group:
-
On the menu bar, click Manage
.
-
On the Manage page, click Users.
-
On the Users page, click the User groups tab.
-
Next to the user group for which you are creating rules, click Policies
.
-
On the User group policies page, click New rule.
-
In the New rule dialog box, select the entity definitions you want to use in the rule, and click OK.
NoteYou can also add the rule to all entity definitions by selecting the Any definition option.
Add conditions to a rule
To add conditions to a rule:
-
Next to the desired rule, click Add condition.
-
In the condition box, from the Choose definition list, select an option.
-
Next to the condition, click Select and, in the Select items dialog box, select a final lifecycle status value.
-
To confirm your choices, click Select and then click Save.
-
If you want users to see only the assets they created, click Only entities created by current user, and click Save.
Using a policy to grant permissions based on a specific taxonomy value also affects entities that have no value for that taxonomy. For example, if a policy grants permission to update assets that have an M.AssetType of Artwork, users affected by that policy cannot update assets that have a different value for M.AssetType (such as Poster). However, the user policy will also grant update permission to assets that have no value for M.AssetType.
Define permissions for a rule
To define permissions for a rule:
-
On the User group policies page, in the rule you want to change, select the check box next to any permission you want to add, and clear the check box of any permission you want to remove.
-
Click Save.
Configure rules on portal pages
After configuring rules on the entity definitions, set up a separate rule for the Portal.Pages definition, and add the necessary portal pages within conditions so users can see the defined entities.
For search results to account for reference content, make sure the user group policy includes Read permission for Portal.Page: Content detail.
To configure rules on portal pages:
-
On the User group policies page, click New rule.
-
Select the entity definition Portal page (Portal.Page), and click OK.
-
In the rule, click Add condition.
-
In the condition box, from the Choose definition list, select Portal page (Portal.Page), and click Select.
-
Select the applicable portal pages and click Select.
-
In the rule, select the Read permission, and click Save.
Add privileges to a user group
To add privileges to a user group:
-
On the User group policies page, click the Privileges tab.
-
Select the check boxes next to the privileges you want to add.
-
Click Save.
Assign group member security
You can give secure members Read or Write permissions for specific entity definitions.
To assign group member security:
-
On the User group policies page, click the Member security tab.