logo
logo

Permissions

You can define various types of permissions at the rule level, including core entity API permissions, asset-only API permissions, and asset-only UI permissions.

Note

Some UI permissions require the appropriate API permissions for their respective definitions, for example, CreateAnnotation rights in the UI also requires Create rights on the annotation definition itself.

Core entity API permissions

The following table describes core entity API permissions.

PermissionAllows users to
ReadAccess a portal page.
CreateCreate entities related to the entity definition specified on the rule level.
UpdateEdit entities belonging to the related entity definition.
DeleteHard delete (delete button), and soft delete (move to trash button) entities belonging to the related entity definition.

Asset only API permissions

The following table describes asset-only API permissions.

PermissionAllows users to
LockLock the original asset when a draft is created.
UnlockAlwaysUnlock the original asset after the changes are published and the draft is deleted.
SubmitSubmit assets for review.
DirectPublishPublish assets directly (skips the approval workflow steps).
ApproveApprove assets under review (automatically also allows users to reject an asset).
DownloadOriginalDownload the original rendition file of an asset.
DownloadPreviewDownload a preview rendition file.
RequestRestrictedRequest download orders on restricted assets based on the related rights profile (the order is authorized when the use case falls within the parameters).
OrderDownload multiple entities of the related entity definition simultaneously.
OrderRestrictedRequest download orders on restricted assets when the intended use does not fall within the related rights profile (the order is authorized if approved).
CreatePublicLinksCreate asset public links.
ReadPublicLinksView asset public links.
ContentPublishingPublish content to the delivery API
Note

You do not need specific permission to download preview and thumbnail renditions.

Asset only UI permissions

The following table describes asset-only UI permissions.

PermissionAllows users to
AddVersionCreate versioning on asset entities.
CreateAnnotationsCreate annotations on asset entities and add comments on content items.
ReadAnnotationsView annotations from other users and read comments on content items.
CreateDraftCreate a draft of an approved asset to make modifications.
ArchiveArchive assets (to allow access to the archived assets, give Read permission based on FinalLifeCycleStatus).
ViewNotWatermarkedView renditions without watermarking.
ViewFileHistoryView asset alternative files. The ReadAudit privilege is required for ViewFileHistory permission to work.
ViewDataHistoryView modifications made on asset properties. The ReadAudit privilege is required for ViewDataHistory permission to work.
CreateDiscussionCreated comments on assets.
ReassignReassign tasks in MRM (marketing resource management).
EntityPrintGenerate a PDF from single or multiple entities based on a predefined print template.
CreateUserRenditionCreate and configure renditions for an asset.
DownloadUserRenditionDownload asset renditions.
ShareViaEmailShare assets using emails.

Can we improve this article ? Provide feedback