Title: Overview of the Space ACL Editor

The Space ACL editor works the same way as the Using the Server ACL Editor Intro. Some of the sections in this chapter are shared with that section.

The Space ACL Editor allows you to grant the following permissions to any user or group, whether defined in Traction or in an external directory:




Governs who is allowed to see the existence of this space. Required for all but Author by Email permissions. Without this permission, no entries in this space will be visible regardless of the tags appearing on the entry, and the space will not appear in any list of spaces.

Read Own

Only allow a person to read entries which they have posted. If the user does not also have read published permission, they will not be able to see tags from this space.

Read Published

Allows a user to read all the entries in the space and to see the tags from the space. IF moderation is turned on in a space, then this permission only allows the user to see "published" entries while Read Draft would allow the user to see Draft entries as well.

Read Draft

If Moderation is turned on in a space, allows the user to see entries in Draft mode, before they are published.

Read Article History

In the History tab for any given entry, this permission would allow a user to see all the versions in the edit history. If Moderation is turned on, the user will only see Published versions of an entry, unless the user has Read Draft permission.

Read Share Folders

Each Space can have a Share Folder which appears in the Documents tab, if enabled. This permission governs whether the user can see content in that tab.


Generally, ignore this permission. It pertains to a specification for independent blogs to communicate with one another. Trackback was popular in the mid-2000s.


Grants permission to post comments to this space. If Author is not granted, only comments can be posted -- not new top-level articles.


Grants permission to post any type of article to this space.

Author via Email

Grants permission to post to this space by email. Using this permission, users who don't have permission to author interactively may still be allowed to post to the space.

Add Attachments

Allows a user to add attachments to entries in a space. Generally, provide this permission if you provide Author, Author via Email or Comment permissions.

Write Share Folders

Allows a user to add files to the Space level Share Folders. The Space level share folder will only be evident if you have included the Documents tab in Space Settings | Settings | Display.

Edit Own Articles

Allows the user to edit entries originally posted by themselves.

Edit Articles

Controls who is allowed to edit any entry posted to this space.

Edit Locked

If Moderation is turned on in a space, allows a user to edit entries which have been locked. The Lock/Unlock permission is in the Moderation section below.

Modify Share Folders

Allows users to change / replace an existing file in a Share Folder.

Change Tags

Any user who can author can include tags when posting an entry. This permission controls who is allowed to modify (add or remove) tags from existing entries in the space.

Create New Tags

Controls who is allowed to create / invent new tags in this space.


Controls who is allowed to erase any article posted to this space.

Erase Own Articles

Allows the specified people to erase articles they have posted to this space.

Publish Own Articles If Moderation is turned on in a space, allows a user to post an entry in Published state. Otherwise, all new entries would go into Draft state.
Publish Articles If Moderation is turned on in a space, allows a user to click to change any Draft entry into a Published entry.
Lock / Unlock Articles If Moderation is turned on in a space, allows a user to restrict who can edit an entry by putting on a Lock. Once an entry is locked, only users who can Unlock and then Edit or users who can Edit Locked will be able to edit the entry.


Controls access to this space's Space Setup views.

Tour of the ACL Editor

The first section lists the users and groups for whom permissions have been configured.

One user or group at a time can be selected. The permissions for the selected user or group appear in the Permissions panel underneath.

When a user or group is selected, clicking the Show Details link in the top-right will pop up a window showing the administrative details for the user. The details window for groups shows the group membership.

You can remove the selected user or group by clicking the remove button.

You can add a user or group by clicking the corresponding add button.

The Permissions list has three columns. The first names the permission. The next two columns have checkboxes that either allow or deny the permission. Only one of these can be checked at a time. If neither is checked, the permission defaults to not granted, except during failsafe mode: if no Login permissions have been defined, Everyone is allowed to login, and if no Administer Server permissions have been defined, Everyone can administer the server.

The Effective Permissions link lets you specify a user or group and show the result of applying the entire Access Control List to that user. This can be used to preview permissions for users who have not yet logged in and for whom no Traction profile yet exists.

After modifying the page, the Reset and Apply buttons become activated and the Effective Permissions button becomes deactivated.

Clicking Reset throws away all edits you have made and displays the active ACL.

Clicking Apply activates the ACL and re-enables the Effective Permissions button.

User and Group Details and Effective Permissions Views

When you select a User or a Group, you can click to Show Details (link appears above the list of users/groups) or you can click for Effective Permissions. Show Details gives you a comprehensive view of the user or group's permissions and membership along with effective permission across all spaces. Effective Permissions is a subset of Show Details, offering just the user or groups Effective Permissions for this space.

Sample User Details Window


Sample Group Details Window

Sample Effective Permissions Window

If a permission has been granted, it shows with a green checkbox. If denied, it shows with a red X. If the permission has been neither granted nor denied, the box is blank, and the permission is not granted.

Related Articles
Article: Doc192 (permalink)
Date: March 22, 2008; 4:11:12 PM EDT
Author Name: Documentation Importer
Author ID: importer