Important

You are browsing the documentation for version 4.2 of OroCommerce, OroCRM and OroPlatform, which is no longer maintained. Security Support ends in January 2024. Read version 5.0 (the latest LTS version) of the Oro documentation to get the updated information.

See our Release Process documentation for more information on the currently supported and upcoming releases.

How to Use Draft ACL

Draft entities have constraints when working with ACL.

Follow the instructions provided in the Introduction to Security in Oro Applications topic for more details.

Permissions

The list of permissions:

  • Create Drafts - is responsible for the CREATE_DRAFT permission. It grants a user permissions to create a draft.
  • View Drafts - the owner permission (virtual). Responsible for the VIEW_DRAFT permission of draft entities created by the owner. It has a higher priority than View All Drafts.
  • View All Drafts - is responsible for the VIEW_ALL_DRAFTS permission. It grants a user permissions to view all drafts. (Does not restrict draft entities created by the owner).
  • Edit Drafts - the owner permission (virtual). Responsible for the EDIT_DRAFT permission of draft entities created by the owner. It has a higher priority than Edit All Drafts.
  • Edit All Drafts - is responsible for the EDIT_ALL_DRAFTS permission. It grants a user permissions to edit all drafts. (Does not restrict draft entities created by the owner).
  • Delete Own Drafts - the owner permission. Responsible for the DELETE_DRAFT permission of draft entities created by the owner. It has a higher priority than Delete All Drafts.
  • Delete All Drafts - is responsible for the `DELETE_ALL_DRAFTS` permission. It grants a user permissions to delete a draft.
  • Publish Drafts - is responsible for the PUBLISH_DRAFT permission. It grants a user permissions to publish a draft.