Planning User Permissions

Designing a site requires figuring out what everybody needs to be able to do on it, and assigning appropriate permissions to people to do that stuff. What is possible to do depends on what modules are installed, and what you are allowed to do depends on what group you're in and what permissions those groups have. If you are an anonymous browser of the site, you won't be able to do everything a logged in (authenticated) user can do. If you are a logged in user, you still might not be able to do all the things a TdB member can do. A TdB member still can't do everything an administrator can do, and then there may be other special groups of people who are members of one or more of the standard groups, but can also do another specific thing.

That was poorly said, but perhaps if you could see the settings themselves, it would help explain it better... The attached PDF shows the 'access control' settings as of Jan, 2007. There are several groups (anonymous, authenticated user, Official Friend, and TdB member).

• Anonymous users can generally view most stuff but cannot create content or post comments.
• Authenticated users can post comments, but they go into a moderation queue, they can also use some more stuff (like run the music player).
• Official Friends can post comments without admin approval and they may be given special access to documents that normal users cannot see
• TdB members can post book pages which can be included into the books in the library, they can see things that have been set for TdB members only, and can do everything an authenticated user can do.
• Admins can do everything.