00:00:07:19 - 00:00:09:09
In this tutorial, we'll take a look

00:00:09:09 - 00:00:13:03
at the fundamentals of Infigo’s access
permission functionality.

00:00:13:20 - 00:00:17:07
So this allows a storefront administrator
to create rules controlling

00:00:17:07 - 00:00:22:09
customer access to products.

00:00:22:09 - 00:00:25:16
The first thing we're going to do
is navigate to access permission

00:00:25:17 - 00:00:31:18
settings.

00:00:31:18 - 00:00:35:18
These are just some general settings
for configuring our access permissions.

00:00:36:02 - 00:00:38:04
We'll just quickly go through these.

00:00:38:04 - 00:00:41:06
So first off,
we have access permissions enabled.

00:00:41:17 - 00:00:45:24
So this controls the overall access
capabilities within the selected

00:00:45:24 - 00:00:47:01
storefront.

00:00:47:01 - 00:00:50:19
So if I have that turned on,
it means access permissions are enabled.

00:00:51:05 - 00:00:55:06
This is a great setting to use
if you temporarily need to disable

00:00:55:06 - 00:00:58:18
your access permissions rules
that you may have specified

00:00:59:22 - 00:01:02:03
if you do some maintenance, for example,
or want to test

00:01:02:03 - 00:01:07:24
something else,
we have default is allowed.

00:01:08:04 - 00:01:12:24
So products, categories or otherwise
sitting outside of the defined rules

00:01:13:04 - 00:01:18:06
are allowed to be viewed by all customers
in a default configuration. So

00:01:19:12 - 00:01:20:16
default is allowed.

00:01:20:16 - 00:01:24:19
If that is turned on,
that means that by default

00:01:24:19 - 00:01:27:23
they're allowed to all customers
are allowed to see all products

00:01:28:01 - 00:01:31:06
unless a rule specifies
that they're not allowed to do so.

00:01:32:05 - 00:01:35:21
If that's turned off,
then it means by default, all customers

00:01:36:03 - 00:01:39:28
are not permitted to access our products,

00:01:40:07 - 00:01:43:15
and then they're only able
to access products which are specifically

00:01:43:15 - 00:01:49:15
mentioned in certain access
permission rules.

00:01:49:15 - 00:01:53:08
We have denied guest accounts,
so that's a global restriction on

00:01:53:08 - 00:01:58:13
guest account use so recommended
in most cases, if you want to use access

00:01:58:13 - 00:02:02:12
permissions, then we have

00:02:02:12 - 00:02:05:03
include children in category access.

00:02:05:12 - 00:02:06:08
So this controls

00:02:06:08 - 00:02:10:03
whether a category named in a permission
rule is treated in isolation

00:02:10:15 - 00:02:14:03
or the rule filters down to children
of that particular

00:02:14:03 - 00:02:18:06
category. And

00:02:19:15 - 00:02:21:27
then we have the access permission
version.

00:02:21:28 - 00:02:26:26
You can see we have this selection
between V one and V two.

00:02:26:26 - 00:02:31:27
V two is recommended
and encouraged for all new Infigo users

00:02:32:04 - 00:02:34:24
and those just introducing access
permissions

00:02:35:01 - 00:02:38:09
onto their storefronts.

00:02:38:09 - 00:02:39:19
So v one is still

00:02:39:19 - 00:02:43:03
there is we still have users
that are using the old legacy version.

00:02:43:13 - 00:02:48:20
The V two is a much improved methodology,
so it's recommended that's utilized

00:02:48:20 - 00:02:57:15
for anyone else just becoming familiar
with this functionality.

00:02:57:15 - 00:03:00:01
With those configured, we'll click Save.

00:03:00:01 - 00:03:02:20
Now we can get onto the next group
of settings

00:03:02:20 - 00:03:04:23
by clicking on this little button down
here.

00:03:05:13 - 00:03:08:17
Alternatively, if we start typing access
permissions again,

00:03:09:25 - 00:03:12:01
in this time we'll go to setup access

00:03:12:01 - 00:03:20:11
permissions.

00:03:20:11 - 00:03:22:10
Now this screen is where you can define

00:03:22:10 - 00:03:25:22
or edit access permissions
within your particular storefront.

00:03:26:08 - 00:03:30:18
We'll break it down into three
major groups within here.

00:03:31:17 - 00:03:33:03
So we'll go into these in more detail.

00:03:33:03 - 00:03:35:05
But in a nutshell, we have scopes.

00:03:35:19 - 00:03:38:04
So this is a method of defining the users

00:03:38:10 - 00:03:40:17
that you wish
to apply your permissions to.

00:03:42:15 - 00:03:43:12
We have Target.

00:03:43:12 - 00:03:46:16
So this is a method
of defining the products or categories

00:03:46:16 - 00:03:51:00
that you wish to apply permissions to.

00:03:51:00 - 00:03:54:08
And then we have access permissions
and the rules tab.

00:03:54:17 - 00:03:59:11
So this is an area to combine scopes
and targets to give certain users

00:03:59:15 - 00:04:03:09
so covered by the scopes access
or restrict access

00:04:03:09 - 00:04:08:15
to certain products
or categories controlled by the target's.

00:04:08:15 - 00:04:11:06
Now, of course, there are other tabs
available in here as well.

00:04:11:06 - 00:04:14:21
So rule group, stock management,
automatic rule generation,

00:04:15:03 - 00:04:24:12
these will not be covered
in this fundamental video.

00:04:24:12 - 00:04:30:23
So we're going to start off with scopes.

00:04:30:23 - 00:04:35:00
Click on Add New Scope.

00:04:35:00 - 00:04:37:02
You'll see we're getting this new screen
appearing here.

00:04:37:20 - 00:04:40:11
So Scopes, as I mentioned before, define

00:04:40:11 - 00:04:44:14
the uses that you wish to apply access
permissions rules to.

00:04:44:14 - 00:04:47:02
There are numerous ways to define scopes,

00:04:47:20 - 00:04:50:16
some examples of this,
including all customers.

00:04:51:04 - 00:04:53:21
So this is a blanket scope covering

00:04:53:21 - 00:04:56:02
all customers specified on the storefront.

00:04:56:23 - 00:04:59:25
As you'll see when I checked,
that's the other specification

00:04:59:25 - 00:05:02:06
methods will become unavailable
when this is selected.

00:05:02:20 - 00:05:05:06
So this is just covering every single user

00:05:05:15 - 00:05:08:29
on that particular storefront.

00:05:08:29 - 00:05:11:12
If we want to be a little bit
more selective

00:05:12:00 - 00:05:14:29
then for example,
we have the customer field.

00:05:15:09 - 00:05:18:17
This allows us to select
an individual customer account

00:05:18:17 - 00:05:21:10
just to apply as a scope.

00:05:22:00 - 00:05:26:17
So you see, for example,
I can select individual users,

00:05:26:17 - 00:05:32:21
we have departments,
so departments are groups of customers.

00:05:33:02 - 00:05:37:02
So it might be such as a particular
company or an area within a company.

00:05:38:11 - 00:05:39:09
So specifying a

00:05:39:09 - 00:05:44:15
department on a scope will mean that
any rules apply to all of the customers

00:05:44:20 - 00:05:49:21
within that particular department.

00:05:49:21 - 00:05:53:21
We have custom role
and then we have various country entries,

00:05:54:01 - 00:05:58:07
so scopes can be created
to apply to particular countries.

00:05:58:07 - 00:06:02:12
So this is useful if, for example,
certain products are only available

00:06:02:12 - 00:06:06:22
in certain regions.

00:06:06:22 - 00:06:10:04
Now in our example,
our scope will be capped, nice and simple,

00:06:10:13 - 00:06:16:28
and it's going to cover one
specific customer account.

00:06:16:28 - 00:06:20:01
I can give the scope a manual name
if I want to do so.

00:06:20:12 - 00:06:22:23
I can leave that blank
to get it to auto generate

00:06:23:14 - 00:06:25:10
and then click save

00:06:26:07 - 00:06:28:09
and you can see a scope for that

00:06:28:09 - 00:06:31:15
particular customer has now been created.

00:06:31:15 - 00:06:34:14
I'm very quickly
going to create a second scope for user to

00:06:50:29 - 00:06:52:12
make sure we click on Save

00:06:52:12 - 00:06:55:05
to confirm those settings

00:06:56:24 - 00:06:58:11
and then we're going to move ahead

00:06:58:11 - 00:07:05:07
to our targets.

00:07:05:07 - 00:07:09:14
So targets are a mean of specifying
the products or the categories

00:07:09:14 - 00:07:13:05
that you wish to be included
as part of your access permissions rules.

00:07:13:25 - 00:07:16:21
As with scopes,
there are numerous methods of defining

00:07:16:21 - 00:07:19:11
the entities that are covered by a target,

00:07:19:22 - 00:07:22:20
such as individual products
or entire categories.

00:07:23:24 - 00:07:28:24
Also included in the target specification
is an all setting, which allows rules

00:07:28:24 - 00:07:31:23
to be applied to all of the products
on the storefront and once

00:07:36:21 - 00:07:38:24
so if I just go on add new target,

00:07:39:28 - 00:07:42:24
you can see that
we start off with that all configuration

00:07:42:24 - 00:07:45:23
where all products will be selected
for that particular target.

00:07:46:17 - 00:07:48:28
Alternatively,
we can do individual products,

00:07:49:16 - 00:07:51:21
product groups, categories,

00:07:52:06 - 00:07:56:08
product
tags, specification attributes and so on.

00:07:57:28 - 00:08:01:03
We'll just keep it nice and simple
in this particular example.

00:08:01:03 - 00:08:04:00
So I'm going to go for a specific product

00:08:04:00 - 00:08:05:29
and I'm going to relate it
to, in this case,

00:08:05:29 - 00:08:10:19
product one.

00:08:10:19 - 00:08:29:24
And I'll very quickly
create a second one for product two.

00:08:29:24 - 00:08:33:05
Now the final step here
is to go to the Access Permissions tab

00:08:33:28 - 00:08:39:04
and then the sub tab, which is rules.

00:08:39:04 - 00:08:39:27
So what we're going to do

00:08:39:27 - 00:08:43:03
in here is actually generate our access
permissions rules.

00:08:43:12 - 00:08:46:10
And to do this,
we're going to combine the scopes

00:08:46:10 - 00:08:48:27
and the targets
that we've previously created.

00:08:50:27 - 00:08:53:28
So if I go to add new record,
you'll see that

00:08:53:28 - 00:08:56:27
we've got a few different columns
in this entry that appears.

00:08:57:08 - 00:09:00:07
One is allowing us to select the scope

00:09:00:07 - 00:09:01:28
from our list of generated scopes.

00:09:03:01 - 00:09:03:23
We can select our

00:09:03:23 - 00:09:08:13
target, we can apply a weight.

00:09:08:25 - 00:09:10:23
So the higher the better.

00:09:10:23 - 00:09:15:18
Here, what this basically means
is if there's two conflicting rules.

00:09:15:18 - 00:09:18:23
So let's say, for example,
one is denying access to a product

00:09:18:23 - 00:09:21:12
and one is allowing access to a product.

00:09:21:27 - 00:09:24:15
It will default to the one

00:09:24:15 - 00:09:27:13
which has the higher weighting
and is considered more important.

00:09:29:10 - 00:09:32:27
And then we have the has access checkbox.

00:09:33:26 - 00:09:37:04
So a checked box here will grant access

00:09:37:04 - 00:09:39:19
to the target for the particular scope.

00:09:40:17 - 00:09:43:18
An unchecked box
will deny access to the target

00:09:43:18 - 00:09:47:07
for the chosen scope.

00:09:47:07 - 00:09:50:24
So in my case,
I'm going to grant access and insert

00:09:51:09 - 00:09:54:06
and that's our rule created.

00:09:54:12 - 00:09:57:28
And then I'm going to create a second rule

00:09:58:06 - 00:10:00:14
which covers user two

00:10:00:14 - 00:10:07:26
and gives that user access to product.

00:10:07:26 - 00:10:10:04
So we'll take a look at this
on the frontend in a moment.

00:10:10:04 - 00:10:14:12
But what we should generally see here
is that when we impersonate

00:10:14:12 - 00:10:19:22
user one, they only have access to product
what and when we impersonate user two,

00:10:19:29 - 00:10:27:20
they only have access to product two.

00:10:27:20 - 00:10:30:23
So let's go ahead and take a look
at this on the front end,

00:10:31:12 - 00:10:34:04
we can see that user
one only has access to product.

00:10:34:04 - 00:10:38:20
What product two is nowhere to be seen
in our featured products here.

00:10:39:19 - 00:10:40:27
However, if I go ahead

00:10:40:27 - 00:10:45:01
and impersonate user two,

00:10:45:01 - 00:10:52:05
we should see that the opposite happens.

00:10:52:05 - 00:10:55:14
So they only have access to product two
and not product one.

00:10:56:14 - 00:10:58:19
Now this is a very, very basic example.

00:10:58:19 - 00:11:01:10
You can create very complex
structures of rules

00:11:01:21 - 00:11:04:02
to grant and deny access
to different users.

00:11:04:10 - 00:11:06:19
Two different categories,
different products,

00:11:07:23 - 00:11:10:11
different groups, whatever you need to do.

00:11:10:11 - 00:11:14:17
But this fundamental description here
should give you a solid foundation

00:11:14:24 - 00:11:16:24
for building those more complex rules.