Keywords:
We know something about the pages, content types, and views we need. We should review them, and decide who should get access to what.
Pages
Here are the pages again:
- Welcome
- About Gamerz
- Why join?
- Who can join?
- Working on projects
- The rules
- Members
- Projects
- Events
- Contact
For managers:
- Members (managers)
- Projects (managers)
- Events (managers)
All of the pages are public, except for the last three. Looks like we’ll need a role for the org’s managers. That would be the president, secretary, and treasurer.
Content types
There are three content types:
- People
- Projects
- Events
For each one, we need to decide:
- Who can see the information?
- Who can change the information?
For People, the team decided that only a few fields would be public. Obviously, only org managers can change the people data.
For Projects and Events, everyone can see the data, but only org managers can change the data.
Views
Here are the views, and their restrictions:
- Members (public)
- People (manager)
- Members with unpaid dues (manager)
- Projects (public)
- Projects (manager)
- Events (public)
- Events (manager)
Summary
Here’s the security model.
New role: Org manager
Content types
| Content type | View access | Change access |
| Person | Public: Name, majors, projects Org manager: the rest |
Org manager |
| Project | Public | Org manager |
| Event | Public | Org manager |
Views
- Members (public)
- People (manager)
- Members with unpaid dues (manager)
- Projects (public)
- Projects (manager)
- Events (public)
- Events (manager)