Submitted by Joe Sheridan Fenn on Tue, 2018-03-20 14:19
User Level: 
Advanced
Click on an image to make it bigger.
D8 Group - Create Group Type - Set Permissions - Click Permissions Tab

1. Locate Group Permissions

Permissions are the different activities that users can perform within a group. Different roles may have different permission sets. Each group type that is created contains it's own unique set of permissions.

From within the group environment, click the Permissions tab.
D8 Group - Create Group Type - Set Permissions - Set Group Permissions

2. Set Group Permissions

You will be presented with many permissions.

Some of these permissions, such as those in the Group category, related to managing the group itself.

After the Group category, you'll see a categorized list of permissions grouped by Group Node type - for example, one category is Page, another category is Webform, etc.

In the columns, you'll see the different roles that belong to the group.

  • Group Manager is responsible for all of the permissions in the Group category as well as all of them in the individual Group Node categories.
  • Group Contributor is only concerned with creating and editing content in the Group Node categories.
  • Member has content viewing privileges only . They may view content that is private to the group.
  • Outsider is someone who is a registered user of the overall site, but not a member of the specific group.
  • Anonymous is someone who is not a registered user of the site.

Keep in mind that roles and permissions are subjective - there's really no general "wrong" way to do this. It all depends on what your site needs to function as you want it to function.

Once all permissions have been checked, click the Save Permissions button.
D8 Group - Create Group Type - Set Permissions - Click Advanced Outsider Permissions Tab

3. Locate Advanced Outsider Permissions

Click the Advanced Outsider Permissions tab.

The Advanced Outsider permissions are special. These permissions provide access to your global level roles.

For example, say you have a site level role called a Coordinator who manages the whole site. This Coordinator would be considered an Advanced Outsider - they have site level permissions but are not a member of a particular group.

A group type can be configured to prevent the Coordinator from interacting with the group membership and/or content if that person is not a member of the group.

There are probably some use cases where this type of set up is ideal. This won't really work for us, though, so we'll set up the Advanced Outsider permissions so that our global roles can access everything inside of the group without having to be added to the group.
D8 Group - Create Group Type - Set Permissions - Set Advanced Outsider Permissions Tab

4. Set Advanced Outsider Permissions

Note that the format of this permissions list is just like the group-level one that we set up previously. The only difference is that the roles at the top of the table are site level roles.

Check all of the role-appropriate permissions that are necessary for your group.

Click the Save Permissions button.
At some point in this process, you may be informed that you have to rebuild permissions. If the system gives you this message, just follow the instructions available in our Rebuild Permissions instructions.