00:00:07:19 - 00:00:09:09
In this tutorial, we'll take a look
00:00:09:09 - 00:00:13:03
at the fundamentals of Infigo’s access
permission functionality.
00:00:13:20 - 00:00:17:07
So this allows a storefront administrator
to create rules controlling
00:00:17:07 - 00:00:22:09
customer access to products.
00:00:22:09 - 00:00:25:16
The first thing we're going to do
is navigate to access permission
00:00:25:17 - 00:00:31:18
settings.
00:00:31:18 - 00:00:35:18
These are just some general settings
for configuring our access permissions.
00:00:36:02 - 00:00:38:04
We'll just quickly go through these.
00:00:38:04 - 00:00:41:06
So first off,
we have access permissions enabled.
00:00:41:17 - 00:00:45:24
So this controls the overall access
capabilities within the selected
00:00:45:24 - 00:00:47:01
storefront.
00:00:47:01 - 00:00:50:19
So if I have that turned on,
it means access permissions are enabled.
00:00:51:05 - 00:00:55:06
This is a great setting to use
if you temporarily need to disable
00:00:55:06 - 00:00:58:18
your access permissions rules
that you may have specified
00:00:59:22 - 00:01:02:03
if you do some maintenance, for example,
or want to test
00:01:02:03 - 00:01:07:24
something else,
we have default is allowed.
00:01:08:04 - 00:01:12:24
So products, categories or otherwise
sitting outside of the defined rules
00:01:13:04 - 00:01:18:06
are allowed to be viewed by all customers
in a default configuration. So
00:01:19:12 - 00:01:20:16
default is allowed.
00:01:20:16 - 00:01:24:19
If that is turned on,
that means that by default
00:01:24:19 - 00:01:27:23
they're allowed to all customers
are allowed to see all products
00:01:28:01 - 00:01:31:06
unless a rule specifies
that they're not allowed to do so.
00:01:32:05 - 00:01:35:21
If that's turned off,
then it means by default, all customers
00:01:36:03 - 00:01:39:28
are not permitted to access our products,
00:01:40:07 - 00:01:43:15
and then they're only able
to access products which are specifically
00:01:43:15 - 00:01:49:15
mentioned in certain access
permission rules.
00:01:49:15 - 00:01:53:08
We have denied guest accounts,
so that's a global restriction on
00:01:53:08 - 00:01:58:13
guest account use so recommended
in most cases, if you want to use access
00:01:58:13 - 00:02:02:12
permissions, then we have
00:02:02:12 - 00:02:05:03
include children in category access.
00:02:05:12 - 00:02:06:08
So this controls
00:02:06:08 - 00:02:10:03
whether a category named in a permission
rule is treated in isolation
00:02:10:15 - 00:02:14:03
or the rule filters down to children
of that particular
00:02:14:03 - 00:02:18:06
category. And
00:02:19:15 - 00:02:21:27
then we have the access permission
version.
00:02:21:28 - 00:02:26:26
You can see we have this selection
between V one and V two.
00:02:26:26 - 00:02:31:27
V two is recommended
and encouraged for all new Infigo users
00:02:32:04 - 00:02:34:24
and those just introducing access
permissions
00:02:35:01 - 00:02:38:09
onto their storefronts.
00:02:38:09 - 00:02:39:19
So v one is still
00:02:39:19 - 00:02:43:03
there is we still have users
that are using the old legacy version.
00:02:43:13 - 00:02:48:20
The V two is a much improved methodology,
so it's recommended that's utilized
00:02:48:20 - 00:02:57:15
for anyone else just becoming familiar
with this functionality.
00:02:57:15 - 00:03:00:01
With those configured, we'll click Save.
00:03:00:01 - 00:03:02:20
Now we can get onto the next group
of settings
00:03:02:20 - 00:03:04:23
by clicking on this little button down
here.
00:03:05:13 - 00:03:08:17
Alternatively, if we start typing access
permissions again,
00:03:09:25 - 00:03:12:01
in this time we'll go to setup access
00:03:12:01 - 00:03:20:11
permissions.
00:03:20:11 - 00:03:22:10
Now this screen is where you can define
00:03:22:10 - 00:03:25:22
or edit access permissions
within your particular storefront.
00:03:26:08 - 00:03:30:18
We'll break it down into three
major groups within here.
00:03:31:17 - 00:03:33:03
So we'll go into these in more detail.
00:03:33:03 - 00:03:35:05
But in a nutshell, we have scopes.
00:03:35:19 - 00:03:38:04
So this is a method of defining the users
00:03:38:10 - 00:03:40:17
that you wish
to apply your permissions to.
00:03:42:15 - 00:03:43:12
We have Target.
00:03:43:12 - 00:03:46:16
So this is a method
of defining the products or categories
00:03:46:16 - 00:03:51:00
that you wish to apply permissions to.
00:03:51:00 - 00:03:54:08
And then we have access permissions
and the rules tab.
00:03:54:17 - 00:03:59:11
So this is an area to combine scopes
and targets to give certain users
00:03:59:15 - 00:04:03:09
so covered by the scopes access
or restrict access
00:04:03:09 - 00:04:08:15
to certain products
or categories controlled by the target's.
00:04:08:15 - 00:04:11:06
Now, of course, there are other tabs
available in here as well.
00:04:11:06 - 00:04:14:21
So rule group, stock management,
automatic rule generation,
00:04:15:03 - 00:04:24:12
these will not be covered
in this fundamental video.
00:04:24:12 - 00:04:30:23
So we're going to start off with scopes.
00:04:30:23 - 00:04:35:00
Click on Add New Scope.
00:04:35:00 - 00:04:37:02
You'll see we're getting this new screen
appearing here.
00:04:37:20 - 00:04:40:11
So Scopes, as I mentioned before, define
00:04:40:11 - 00:04:44:14
the uses that you wish to apply access
permissions rules to.
00:04:44:14 - 00:04:47:02
There are numerous ways to define scopes,
00:04:47:20 - 00:04:50:16
some examples of this,
including all customers.
00:04:51:04 - 00:04:53:21
So this is a blanket scope covering
00:04:53:21 - 00:04:56:02
all customers specified on the storefront.
00:04:56:23 - 00:04:59:25
As you'll see when I checked,
that's the other specification
00:04:59:25 - 00:05:02:06
methods will become unavailable
when this is selected.
00:05:02:20 - 00:05:05:06
So this is just covering every single user
00:05:05:15 - 00:05:08:29
on that particular storefront.
00:05:08:29 - 00:05:11:12
If we want to be a little bit
more selective
00:05:12:00 - 00:05:14:29
then for example,
we have the customer field.
00:05:15:09 - 00:05:18:17
This allows us to select
an individual customer account
00:05:18:17 - 00:05:21:10
just to apply as a scope.
00:05:22:00 - 00:05:26:17
So you see, for example,
I can select individual users,
00:05:26:17 - 00:05:32:21
we have departments,
so departments are groups of customers.
00:05:33:02 - 00:05:37:02
So it might be such as a particular
company or an area within a company.
00:05:38:11 - 00:05:39:09
So specifying a
00:05:39:09 - 00:05:44:15
department on a scope will mean that
any rules apply to all of the customers
00:05:44:20 - 00:05:49:21
within that particular department.
00:05:49:21 - 00:05:53:21
We have custom role
and then we have various country entries,
00:05:54:01 - 00:05:58:07
so scopes can be created
to apply to particular countries.
00:05:58:07 - 00:06:02:12
So this is useful if, for example,
certain products are only available
00:06:02:12 - 00:06:06:22
in certain regions.
00:06:06:22 - 00:06:10:04
Now in our example,
our scope will be capped, nice and simple,
00:06:10:13 - 00:06:16:28
and it's going to cover one
specific customer account.
00:06:16:28 - 00:06:20:01
I can give the scope a manual name
if I want to do so.
00:06:20:12 - 00:06:22:23
I can leave that blank
to get it to auto generate
00:06:23:14 - 00:06:25:10
and then click save
00:06:26:07 - 00:06:28:09
and you can see a scope for that
00:06:28:09 - 00:06:31:15
particular customer has now been created.
00:06:31:15 - 00:06:34:14
I'm very quickly
going to create a second scope for user to
00:06:50:29 - 00:06:52:12
make sure we click on Save
00:06:52:12 - 00:06:55:05
to confirm those settings
00:06:56:24 - 00:06:58:11
and then we're going to move ahead
00:06:58:11 - 00:07:05:07
to our targets.
00:07:05:07 - 00:07:09:14
So targets are a mean of specifying
the products or the categories
00:07:09:14 - 00:07:13:05
that you wish to be included
as part of your access permissions rules.
00:07:13:25 - 00:07:16:21
As with scopes,
there are numerous methods of defining
00:07:16:21 - 00:07:19:11
the entities that are covered by a target,
00:07:19:22 - 00:07:22:20
such as individual products
or entire categories.
00:07:23:24 - 00:07:28:24
Also included in the target specification
is an all setting, which allows rules
00:07:28:24 - 00:07:31:23
to be applied to all of the products
on the storefront and once
00:07:36:21 - 00:07:38:24
so if I just go on add new target,
00:07:39:28 - 00:07:42:24
you can see that
we start off with that all configuration
00:07:42:24 - 00:07:45:23
where all products will be selected
for that particular target.
00:07:46:17 - 00:07:48:28
Alternatively,
we can do individual products,
00:07:49:16 - 00:07:51:21
product groups, categories,
00:07:52:06 - 00:07:56:08
product
tags, specification attributes and so on.
00:07:57:28 - 00:08:01:03
We'll just keep it nice and simple
in this particular example.
00:08:01:03 - 00:08:04:00
So I'm going to go for a specific product
00:08:04:00 - 00:08:05:29
and I'm going to relate it
to, in this case,
00:08:05:29 - 00:08:10:19
product one.
00:08:10:19 - 00:08:29:24
And I'll very quickly
create a second one for product two.
00:08:29:24 - 00:08:33:05
Now the final step here
is to go to the Access Permissions tab
00:08:33:28 - 00:08:39:04
and then the sub tab, which is rules.
00:08:39:04 - 00:08:39:27
So what we're going to do
00:08:39:27 - 00:08:43:03
in here is actually generate our access
permissions rules.
00:08:43:12 - 00:08:46:10
And to do this,
we're going to combine the scopes
00:08:46:10 - 00:08:48:27
and the targets
that we've previously created.
00:08:50:27 - 00:08:53:28
So if I go to add new record,
you'll see that
00:08:53:28 - 00:08:56:27
we've got a few different columns
in this entry that appears.
00:08:57:08 - 00:09:00:07
One is allowing us to select the scope
00:09:00:07 - 00:09:01:28
from our list of generated scopes.
00:09:03:01 - 00:09:03:23
We can select our
00:09:03:23 - 00:09:08:13
target, we can apply a weight.
00:09:08:25 - 00:09:10:23
So the higher the better.
00:09:10:23 - 00:09:15:18
Here, what this basically means
is if there's two conflicting rules.
00:09:15:18 - 00:09:18:23
So let's say, for example,
one is denying access to a product
00:09:18:23 - 00:09:21:12
and one is allowing access to a product.
00:09:21:27 - 00:09:24:15
It will default to the one
00:09:24:15 - 00:09:27:13
which has the higher weighting
and is considered more important.
00:09:29:10 - 00:09:32:27
And then we have the has access checkbox.
00:09:33:26 - 00:09:37:04
So a checked box here will grant access
00:09:37:04 - 00:09:39:19
to the target for the particular scope.
00:09:40:17 - 00:09:43:18
An unchecked box
will deny access to the target
00:09:43:18 - 00:09:47:07
for the chosen scope.
00:09:47:07 - 00:09:50:24
So in my case,
I'm going to grant access and insert
00:09:51:09 - 00:09:54:06
and that's our rule created.
00:09:54:12 - 00:09:57:28
And then I'm going to create a second rule
00:09:58:06 - 00:10:00:14
which covers user two
00:10:00:14 - 00:10:07:26
and gives that user access to product.
00:10:07:26 - 00:10:10:04
So we'll take a look at this
on the frontend in a moment.
00:10:10:04 - 00:10:14:12
But what we should generally see here
is that when we impersonate
00:10:14:12 - 00:10:19:22
user one, they only have access to product
what and when we impersonate user two,
00:10:19:29 - 00:10:27:20
they only have access to product two.
00:10:27:20 - 00:10:30:23
So let's go ahead and take a look
at this on the front end,
00:10:31:12 - 00:10:34:04
we can see that user
one only has access to product.
00:10:34:04 - 00:10:38:20
What product two is nowhere to be seen
in our featured products here.
00:10:39:19 - 00:10:40:27
However, if I go ahead
00:10:40:27 - 00:10:45:01
and impersonate user two,
00:10:45:01 - 00:10:52:05
we should see that the opposite happens.
00:10:52:05 - 00:10:55:14
So they only have access to product two
and not product one.
00:10:56:14 - 00:10:58:19
Now this is a very, very basic example.
00:10:58:19 - 00:11:01:10
You can create very complex
structures of rules
00:11:01:21 - 00:11:04:02
to grant and deny access
to different users.
00:11:04:10 - 00:11:06:19
Two different categories,
different products,
00:11:07:23 - 00:11:10:11
different groups, whatever you need to do.
00:11:10:11 - 00:11:14:17
But this fundamental description here
should give you a solid foundation
00:11:14:24 - 00:11:16:24
for building those more complex rules.
