Environments permissions

Environments access levels

A role's access to environments is set under the Environments tab in the Role editor page.

In the Role editor page, you can select a level of access to environments for your role according to the following options:

  • Master environment only (default) - Allows you to set your role to access only the master environment. The role won't be able to access non-master environments.

  • Selected environments - Allows you to select one or multiple specific environments your role will be able to access.

  • Manage and use all environments - Allows you to set a role to access all environments in a space.

NOTE: With the “Manage and use all environments” permission, the role’s access to master environment content is defined by its content and media permissions. In sandbox environments, this role has full access to all content.

NOTE: A space Administrator role has full access to all environments (including the master environment) and their content.

How to configure access to environments

To configure a role's access to environments:

  1. Go to the Environments tab in the Role editor page.

  2. Under the Access to environments area, select the required environments' access level. If you selected the Selected environments option, please continue to step 3 in How to configure access to a selected environment.

  3. Optional: Under the Manage entities in master/ Manage entities in selected environments area, select the slider(s) to enable the user to create, edit and delete content types and/ or tags.

  4. Optional (only for Manage and use all environments option): Under the Manage environments area, select the slider to enable the user to create environment aliases and change their target environment.

  5. Click Save changes to save the role.

Space roles 307

How to configure access to a selected environment

To configure a role's access to a selected environment:

  1. Go to the Environments tab in the Role editor page.

  2. Under the Access to environments area, select the Selected environments option.

  3. Under the Allowed environments area, select the environment you would like your role to be able to access. The environment is added to the Allowed environments list.

  4. Optional: Repeat step 3 to add another environment to the Allowed environments list.

  5. Optional: To remove an environment from the Allowed environments list, click on X button against this environment.

  6. Finish setting environments permissions starting from step 3 in How to configure access to environments.

Space roles 308

Assigning multiple environment access options to a single user

When multiple roles are assigned to a single user, the environments access options defined in these roles override each other according to the following principles:

  • “Selected environments” option overrides the “Master environment only” option.

    NOTE: “Selected environments” option explicitly defines specific environments that a user is allowed to access. A user won’t have access to the master environment unless the master environment is added as one of Allowed environments.

  • “Manage and use all environments” option overrides the “Selected environments” option. 

A table and comments below explain how an example combination of roles with different environment permissions assigned to the same user affect the user’s access to environments.

Role ARole BResulting access

User 1

Master environment only

Selected environments: “Staging” environment

Selected environments: “Staging” environment

User 2

Selected environments: “Staging” environment, “Testing” environment, “POC” environment

Manage and use all environments

Manage and use all environments

User 1:

  • Role A - Environments access is set to “Master environment only”.

  • Role B - Environments access is set to “Selected environments” and the allowed environment is “Staging”.

  • Behavior: There is one selected environment the user is explicitly allowed to access. But an access to master environment is not explicitly allowed, which would be expected by only looking at Role A. Tip: To grant User 1 access to master environment, add it as one of the Selected environments.

User 2

  • Role A - Environments access is set to “Selected environments” and the allowed environments are: “Staging”, “Testing” and “POC”.

  • Role B - Environments access is set to “Manage and use all environments”.

  • Behavior:  Access is granted to all environments, because “Manage and use all environments” option overrides “Selected environments” option.

NOTE: To learn more about how content and media permissions combine when multiple roles are assigned to a single user, please refer to Assigning multiple roles to a user.

Was this helpful?
add-circle arrow-right remove style-two-pin-marker subtract-circle