What would you like to know more about?

Show Page Sections

User Rights & Restrictions

Note: Need to keep track of your User's MinistryPlatform access? Want to make sure a volunteer doesn't have full rights to the Contributions pages? The User Rights & Restrictions read-only page provides a comprehensive list of available access and/or restrictions for all Users with at least one Security Role. It's your User access cheat sheet!

The User Rights & Restrictions page is located in the Administration page section folder and is included in the Administrator Security Role. It comes preloaded with multiple Views and provides a comprehensive, searchable look at Platform Security by User.

This page helps track User access to the Platform, and we know our community will have more creative ways to maximize its potential. Have an idea to fully leverage this (or any!) page? Share it in the MinistryPlatform Community! Here are some examples to get you started.

  • Find the perfect report for a ministry? Before you share it and train the ministry how to use it, check this page to see if a User does NOT have access to an existing report. Save yourself both time and frustration!
  • Have a crackerjack volunteer you trust with the Combine Contacts or Deceased Persons Tool? Use this page to see which Security Role grants a User access to a particular Tool and assign your volunteer the appropriate Security Role.
  • Need to grant a User the highest access for a specific page? This page quickly displays which Security Role grants a User the highest level access to a particular page.

What Displays on the Page

Pages
Displays if they are Main Domain pages that exist within the Security Role grid. Excludes System Setup and System Lookup pages.
Sub-pages
Displays if the User has at least read-only rights to the sub-page. "None" Access (see below) does not apply to Sub-pages.
Users
Displays if they have at least one Security Role.
All Item Types
Attach Page File, Export Page Data, Page, QuickAdd Page Records, Report, Secure Page Records, Tool, Field Restrictions.
Limited Item Types (only appear if they exist)
Field Restrictions, Attach Page File, Sub-page, Export Page Data, QuickAdd Page Records, Secure Page Records.
None
Pages, Reports, and Tools.

Who Displays on the Page

  • Users with at least one Security Role.
  • One row displays per User, per specific Item Type that does exist.
    • For Example: One row shows that User "Booth, Sydney" has Attach Page File Item Type per specific page where Access is Attach exists. The Role List summarizes this by providing which roles grant this access.

  • One row displays per User, per specific Item Type that does not exist for Pages, Reports, and Tools. These are the None rows.
    • For Example: One row displays to show that User "Booth, Sydney" does not have access to the Report Item Type per specific Report where Access is None.

Page Views

My Rights & Restrictions (default)
The authenticated User's rights and restrictions.
All Records
All Page records.
Can Impersonate
A comprehensive list of rights and restrictions for Users whose User record has the Can Impersonate field set to Yes.
Field Restrictions
A comprehensive list of all Users with field restrictions.
Page Rights & Restrictions
A comprehensive list of all User Page-related rights and restrictions.
Sub-page Rights & Restrictions
A comprehensive list of all User sub-page-related rights and restrictions.
Setup Admin
A comprehensive list of rights and restrictions for Users whose User record has the Setup Admin field set to Yes.

Columns

Contact Display Name
The User's Contact record Display Name.
Nickname
The User's Nickname.
Item Type
The type of access or restriction granted.
Item Name
The specific Page, Report, or Tool associated with the Item Type.
Access
The highest level of access granted to a Page or Sub-page (for example, Read, Edit, and so on) or the specific access granted to other Item Types (for example, Attach, Launch, and so on).
Role List
The list of Security Roles that grant the User access. Follow with qualifiers to determine which type of access each specific role provides:
  • R: Read
  • E: Edit
  • A: Mass Assign
  • D: Delete (Full)
  • For Example: User "Morris, Ash" is granted both Assign and Delete rights to the Users Page using different Security Roles. Since Delete extends the most permission, this value is indicated under the Access column.

    Note: As with all Read-only pages, performance may be impacted based on how many records exists. This varies based on the number of eligible users per church.