Configuring roles to restrict content

Restricting access to site content: Professional subscription plan or higher

After you prepare your website to restrict content, the next step is to configure your taxonomy vocabulary to protect specific website content.

To use vocabulary terms to restrict content to specific user roles:

  1. Go to Structure > Taxonomy.

    Taxonomy link

  2. Either create a new vocabulary by clicking Add vocabulary, or click edit vocabulary for the existing taxonomy vocabulary that you want to restrict.

    Edit vocabulary link for Taxonomy

    To learn more about vocabularies, see Taxonomy.

  3. On the vocabulary edit page, select Enable terms to manage content access.

    Enable terms check box

    The Allow terms to specify a redirect URL for denied content check box appears.

    Enable terms selected

  4. If you don't want to redirect users to an alternate webpage, do not select this check box. Unauthorized users accessing restricted content will receive a standard "access denied" webpage. If you do want to redirect users to a separate webpage, select the Allow terms to specify a redirect URL for denied content check box.

    You can use an alternate webpage to direct visitors to email an administrator for access to protected content (or to direct users to purchase access using an external e-commerce function). After access is granted, the administrator can change the user's access level.

  5. Click Save.

    The Taxonomy page reloads, and the vocabulary you selected now has the text (access control enabled) appended to its name.

    (access control enabled) descriptor

  6. Click list terms for the selected vocabulary.

    List terms link

  7. Click the edit link for the term that you want to set access control.

    Edit link for term

  8. On the term's edit page, expand the Content access permissions section.

    Content access permissions section

  9. To restrict content access to your higher-level users only, make sure that your anonymous and authenticated users do not have the following permissions:
    • View content with this term
    • Edit any content with this term
    • Delete any content with this term
    • Add this term to content

    Note: To allow lower-level users to see previews of protected content that redirects them to another page, enable the View this term in rendered content permission. Otherwise, disable this permission as well.

  10. Make sure that your higher-level user roles have the appropriate permissions for this term.
  11. Enter a web URL in the Redirect URL field that contains the page you want your lower-level users to view.

    The URL can be a link to an external website, or a relative link to another page on your site. The redirect page can include an "upsell" opportunity, providing the user more information about what they can do to obtain access to restricted content.

  12. Click Save.

Continue to the next step >