sylvainjule/bouncer

Restrict access of a user role to a specific page (and its children) in the panel.

Maintainers

Details

github.com/sylvainjule/kirby-bouncer

Source

Issues

Installs: 1 945

Dependents: 0

Suggesters: 0

Security: 0

Stars: 53

Watchers: 2

Forks: 6

Open Issues: 1

Type:kirby-plugin

1.1.0 2024-03-07 10:05 UTC

Requires

MIT d62d9a30e8543f1d9af0f43dbc21e5d09be928b0

  • Sylvain JulĂ© <contact.woop@sylvain-jule.fr>

This package is auto-updated.

Last update: 2024-04-07 10:27:43 UTC

README

Restrict access of a user role to a specific page (and its children) in the panel.

bouncer-screenshot


Overview

This plugin is completely free and published under the MIT license. However, if you are using it in a commercial project and want to help me keep up with maintenance, please consider making a donation of your choice or purchasing your license(s) through my affiliate link.


1. Installation

Download and copy this repository to /site/plugins/bouncer

Alternatively, you can install it with composer: composer require sylvainjule/bouncer


2. Setup

The intent of this plugin is to limit a user's ability to edit only their Account page + a page (and its children) selected in a Pages field.

  • First, create a new user role (for example, /site/blueprints/users/test.yml)
  • Set their permissions, and add a pages field:
title: Test

permissions:
  access:
    panel: true
    site: true
    settings: false
    languages: false
    users: false
  # ...
  user:
    changeRole: false
    delete: false
    update: false # else a user will be able to edit the page they have access to on their profile

fields:
  canaccess:
    label: 'The user will only be able to access:'
    type: pages
    multiple: false
    options: query
    query: site.pages # or any query that suits your needs
  • In your site/config/config.php, tell the plugin which role => fieldname associations to use:
return [
    'sylvainjule.bouncer.list' => [
        'test' => [ // match the filename without extension of the user blueprint
            'fieldname' => 'canaccess' 
        ]
    ]
];

2.1 Optional page switcher

(beta)

Since 1.0.1 a given user can access different pages. You can remove the multiple: false option from the blueprint:

# User role blueprint
title: Test

fields:
  canaccess:
    label: 'The user will only be able to access:'
    type: pages
    options: query
    query: site.pages # or any query that suits your needs

Add a bouncernav section in every page you'd like to display the page switcher on:

// Anywhere in any blueprint

(...)
sections:
  bouncernav:
    type: bouncernav

Then state in your config.php that you want to display the page switcher for a given user role:

return [
    'sylvainjule.bouncer.list' => [
        'test' => [
            'fieldname' => 'canaccess',
            'nav' => true
        ]
    ]
];

3. Disclaimer

I needed this functionnality for a website and turned it into a plugin. I hope it can prove helpful, but do not intend to extend it or support more refined restriction scenarios with this plugin.


4. License

MIT