Drupal uses a role-based access control system to manage what users can see and what actions they can perform on the website. This ensures content is handled securely and follows proper approval workflows.
What is a Role?
A Role is a group assigned to users that defines their level of access within the system.
Each user is assigned one or more roles depending on their responsibilities.
What are Permissions?
Permissions are specific actions that a role is allowed to perform.
Examples include:
- Creating content
- Editing content
- Publishing or unpublishing pages
- Uploading media
- Managing menus or settings
Roles = who you are
Permissions = what you can do
How Roles and Permissions Work Together
- Roles are assigned to users
- Each role has a set of permissions
- Users can only perform actions allowed by their role
This ensures:
- Security: only authorized users can make changes
- Control: content follows a structured workflow
- Accountability: actions are linked to user roles