Configuring design permissions

Copy to clipboard

The Design permission matrix is used to set up important permissions related to the design of page templates and their components.

To configure the design permissions:

  1. Open the Permissions application.
  2. In the first Permissions for drop-down list, choose Module.
  3. In the second drop-down list, choose Design.

The changes you make on the permission matrix apply immediately.

The permission matrix for designing websites

You can assign the following permissions to members of the specified roles:

Design website

Allows users to edit pages on the Design tab of the Pages application. Note that even though the changes on the Design tab are made on a specific website, this may also affect other sites in the system if they use the same shared page template.

This permission also determines whether the given role is allowed to configure the properties of web parts through the On-site editing interface.

Edit ASCX code

Allows users to modify the ASCX code of page layouts and transformations. This permission does not affect the ability to edit the HTML versions of these objects.

This should be considered a high‑level permission because it gives users the option to add and execute inline code.

Edit SQL code

Allows users to create or modify query objects and edit fields containing SQL code, such as the WHERE condition properties of web parts. This should be considered a high‑level permission because it gives users the power to write and execute SQL queries against the website’s database.

Users without the Edit SQL code permission can still set the Where condition, Order by and Columns properties of web parts, but may only use restricted SQL syntax as described below.

Where conditions:

  • column names, values and basic operators: =, !=, >, <
  • AND & OR operators, parentheses
  • column BETWEEN value AND value
  • column LIKE value
  • column IN (values)
  • column IS NULL
  • NOT keyword for the above expressions (NOT BETWEEN, NOT LIKE, NOT IN, IS NOT NULL)

Order by expressions:

  • one or more column names (separated by commas)
  • the ASC and DESC keywords

Columns expressions:

  • one or more column names (separated by commas)
  • SQL aliases for columns defined using the AS keyword (must be upper case)

Destroy transformations

Allows users to delete the version history of transformation objects.

Destroy CSS stylesheets

Allows users to delete the version history of CSS stylesheet objects.

Destroy page layouts

Allows users to delete the version history of shared page layouts.

Destroy page templates

Allows users to delete the version history of page templates.

Destroy web part containers

Allows users to delete the version history of web part containers.

Destroy web part layouts

Allows users to delete the version history of web part layouts.

For security reasons, the Edit ASCX code and Edit SQL code permissions may only be assigned by users with the Global administrator privilege level.