Advanced

Permissions & Access Settings

The main access settings for users and roles are in the “Permissions” tab. To use them effectively, you need to understand the difference between general access and permission sets. Permissions are divided into two groups. The first one is general, where we give rights to use folders for users of specific WordPress roles. By default, permissions are given only to the “Administrator” group, as shown in the image below.

The second group of permits are permissions for folder types. In this group, we enable or disable the ability to create and manage folders for built-in WordPress types such as media library, posts, pages, users, as well as for new custom post types created by third-party plugins or themes. For each type of folder, we must set a security profile too.

By default, the plugin includes two built-in security profiles that cannot be edited or deleted. The first profile is called the “Personal Folders“. When selected, this profile allows users to create and edit only their own folders, ensuring that no one else has access to them. The second built-in security profile is called “Common Folders“. This profile allows users to access shared folders to enable efficient teamwork and easy sharing and cataloging of media content in WordPress.

But what if we want to give more complex permissions to users. Let’s say we want to give full folder permissions only to the “Administrator” group, and read-only permissions to other users who are not members of this group.

To create a new security profile, navigate to the “Security Profiles” block and click the plus button. Name the new profile, in my example I called it “My Special Profile“, then add the “Administrator” and “Editor” roles to the profile. For the “Administrator” role, enable all the checkboxes to grant full access permissions. For the “Editor” role, enable only the “View” checkbox, restricting their capabilities to viewing content only. Click the “Submit” button.

Once we have created a new profile, we need to apply it to some type of folder. In our case, let’s do it for Media Library. Don’t forget to mark the roles in the “Access Roles” block that should have access.

As you can see, permission settings and security profiles are highly customizable, allowing administrators to create access levels for different roles and specific users. The system is comprehensive, in addition to being easily customizable, providing a simple way to manage access to data and functionality. Overall, these customizations are an important tool for maintaining data integrity and controlling user access to different areas of the site.