KUSoftas CMS supports Access Control List (ACL) to authorize CMS Object (site resource) access. ACL contains read (r), write (w), exec (e), manage (m) permissions assigned to users and groups (roles). Permissions can be inherited (i) from CMS Object Container (ex. file may inherit permissions from folder, folder - from parent folder, etc.). Inheritance may be allowed (i = true), or denied (i = false). Top CMS Object Container is page containing CMS Object / CMS Objects Tree. Only one exception is WebDAV server. It's top permissions may be defined in CMS tool Setup. As WebDAV uses CMS File Manager backend it's all lower level CMS Object permissions may be defined using CMS File Manager access control.
Permission evaluate process uses:
Folowing CMS Objects are targeted in access control:
Pages and menu items may be defined available for date/time period.
KUSoftas CMS supports HTTP Basic Authentication form. If there is no logged user and is attempting to open protected page HTTP Basic Authentication form will be sent to client. If there is logged user and his permissions are not sufficient "Authorization denied" message will be sent to client.
KUSoftas WebDAV server CMS supports HTTP Digest Authentication form. If there is no logged user and is attempting to access WebDAV server HTTP Digest Authentication form will be sent to client.
Site files and folders are protected with .htaccess file which uses KUSoftas CMS access control data. HTTP digest authentication for CMS builtin administrator is using.