What is Role-Based Security?
Role-based security is a user management system to segment your user types and secure parts of the control panel that some users may not need access to. Users are individuals to whom you grant some level of control panel access. Each user has their own account secured by a username and password. You manage your users by placing them in groups customized for their responsibilities.
To define the security roles your users will abide by go to Settings>Security>User Roles/Groups
Read below how to manage user rules and groups.
How User Roles Work
AmeriCommerce online stores set security levels for four predefined groups: Administrator, Customer Service, Product Manager, and Guest (1). Each of these has their own privileges. For example, Administrator users have total access to all areas while Customer Service users can only access the customers, orders, and order tracking numbers areas. Product Managers are allowed to enter areas related to the catalog and importing or exporting data. Guests have no preset privileges and must be granted access by editing that user group.
AmeriCommerce online stores will allow you to customize these groups to fit your needs by editing the User Groups found under Settings>Security>User Roles/Groups. Select the group for which you would like to edit access. You can then specify each user group to be able to Create, Read, Update, or Delete different areas.
- Create allows the user to input new items into an area
- Read means that the user can view the area
- Update gives the user the ability to edit the area
- Delete allows the user to delete any content within that area.
Creating a New User Role
To create a new user role, click the ‘New’ button from the listing page or the more actions menu. Give your group a name and check their access areas and save those changes. When you're done, your new group should appear alphabetized with the other groups in the list. If you need to create two similar groups with extensive permissions, you can Clone the existing group and make the small changes to save it as a new group. You may cancel your changes at any time to reset your group settings or delete a group entirely.
NOTE: Please be aware that deleting is permanent, and cancelling after that action will not restore it.
To assign your role to an existing user,/person or to create a new user go to Settings>Security>Users and create or edit the user and select the role or roles you want to apply to them.
See this article
AmeriCommerce online stores sets security levels for four predefined groups: Administrator, Customer Service, Product Manager, and Guest (1). Each of these has their own privileges. For example, Administrator users have total access to all areas while Customer Service users can only access the customers, orders, and order tracking numbers areas. Product Managers are allowed to enter areas related to the catalog and importing or exporting data. Guests have no preset privileges and must be granted access by editing that user group.
AmeriCommerce online stores allow you to customize these groups to fit your needs by editing the User Groups found under Settings>Security>User Roles/Groups in new admin console , and User Groups found under Global Settings in old admin console. Select the group for which you would like to edit accessibility. You can then specify each user group to be able to Create, Read, Update, or Delete different areas (2). Create allows the user to input new items into an area, Read means that the user can view the area, Update gives the user the ability to edit the area, and Delete allows the user to delete any content within that area. Checking one of the boxes in the grayed-out top row acts as a "select all" for that column. Make sure to save all changes when you are finished.
New groups may be created by clicking the ‘New’ button (3). Give your group a name and check their access areas and save those changes. When you're done, your new group should appear alphabetized with the other groups in the list. If you need to create two similar groups with extensive permissions, you can Clone the existing group and make the small changes to save it as a new group. You may cancel your changes at any time to reset your group settings or delete a group entirely. Please be aware that deleting is permanent, and cancelling after that action will not restore it.
You can manage your user accounts through the User Accounts area listed under People>Users in new admin console and through the User Accounts area listed under Global Settings in old admin console . Here you will find each username along with the related email address, last logon, and group membership. You can edit or delete existing users under the Action column or add a new user with the New Login button. For each user account, you create their password and have access to what groups they are in and whether or not they can view customers' credit card numbers. AmeriCommerce online stores provide fully customizable user groups and individual account managing to offer the most flexible role-based solution for all of your security needs.
User Permissions Defined
Use this page to define the specific areas to which this group has access. Each area is separated into 4 distinct permissions: create, which allows users to enter new records in the area, read, which allows users to view, but not create or edit, update, which allows users to update records, and delete, which allows users to delete records. An audit log of changes made by users is maintained here
ActiveCatalog - The active catalogs function is used to set which products are available for purchase on your individual stores. The active catalog allows you to show specific categories and subcategories on each of your micro or multi-stores.
AdCodes - An AdCode is a reference to a specific advertisement, usually a keyword or email campaign. It shows where visitors, customers, and orders originate. AmeriCommerce online stores use AdCodes to track statistics regarding your advertising campaigns
AdminSearch - Search features within the console of customers, products, and users
Affiliates - Affiliate marketing is a type of performance-based marketing in which a business rewards one or more affiliates for each visitor or customer brought by the affiliate's own marketing efforts.
API - Gives access to API which specifies how some software components should interact with each other. Used for many third-party programs and add-ons that work within AmeriCommerce online stores .
BackgroundWorkers - User Processes, involving user-supplied code in separate processes.
Banners - Images and logo editing
BatchProcess - Background Jobs, Exports/Imports, a series of jobs running.
BatchProcessViewer - The viewing of background jobs and processes.
BlogCategories - Organization of blog posts
BlogPosts - Editing and Creating of blog posts
Blogs - A log of updated information in an organized date format which features functionality for discussion or information that allows users, admin users and customers to post comments on your site
Categories - Categories follow a branching structure with broad categories acting as root level identifiers and child categories refining the product listing as the user drills down.
ContentManagement - Management of content pages and products within the store.
Customers - Users that have registered or purchased items from your store.
CustomerTypes - A Customer Type is a group of visitors to your site that can be defined by you. It is useful in providing unique content to a group of visitors defined as a Customer Type.
CustomFields - A great tool for customizing AmeriCommerce online stores to meet your company's needs. They allow you to store information about customers, orders, products, or stores for use elsewhere in AmeriCommerce online stores .
CustomPaymentTypes - This allows for the creation of custom payment methods that do not already exist (example: credit cards, PayPal, etc..)
DataExport - This function allows users to run various data exports.
DataImport - This function allows users to run various data imports.
DirectedSearch - Search options and search terms
DiscountMethods - Allows the store owner to offer specialized discounts to customers.
EmailAlertAddresses - Allows for the changing or modification Alert Email addresses.
EmailEditor - Allows email templates to be edited.
FileBrowser - This feature gives users the ability to upload or download files on the site’s server directly through the admin interface.
GiftCertificates - This privilege allows the user to create or manage gift certificates.
GlobalRegions - Regions for where items will can be ordered and delivered.
GridPublicLayouts - Layout manager that lays out a container's components in a rectangular grid.
MailingList - Generated marketing email campaign from merchant to customer.
Manufacturers - Used to determine the brand of products.
MicroStores - A specific list of products located on it’s own page created to be marketed towards specific customers and customer types.
Orders - Allows or restricts any type of changes made to orders.
OrderStatuses - Permits or denies the changing of order statuses.
OrderTrackingNumbers - Tracking Numbers attached to Orders
PaymentGateways - Processor of payments
PPCIntegration - Pay per click marketing campaign
ProductAttributes - Attributes associated with products that allow the customer to filter products in a category based on commonalities about your products, much like a tag filter.
ProductStatuses - Changing and editing of product statuses
QuestionAnswer - Changes to the questions and answer widget.
QuickBooksConfiguration - Integration settings for Quickbooks sales management software by Intuit
Reports - Reporting of Sales, Marketing, Visitor Sessions & Error Logs in the Dashboard
Sessions - Viewing the sum of activity for one user/guest/customer of the store.
Shipping - Allows for any changes associated with shipping on the site, with the exception of adding and removing shipping and tracking info on orders.
ShoppingPortals - Multiple store fronts and microstores.
Sitemap - A list of pages of a website accessible to crawlers or users. It can either come in the form of a document used for planning Web Design, or a page that lists the pages on a web site typically organized in heirarchical fashion.
StoreSettings - This applies to making any changes to the actual store settings,
SysAdminOnly - Permissions applicable to the administrator.
TaxRates - Specific tax rate adjustments for various specific regions
Themes - Blocks or allows any type of modifications to settings associated with themes.
UrlRedirecting - The pointing of specific content indexed in search engines to the corresponding content within AmeriCommerce online stores
UserAccounts - Accounts created for each specific user that allow or deny defined defined features of functions.
UserGroupPermissions - The permissions and allowed functionality for user groups
VariationGroups - Variants and Groups of products
Warehouses - Warehouses tell the store the locations that product will be shipped from.
Check out these other Articles on Users: