clearFusionCMS uses a role based security model. When a user logs in the system determines the roles assigned to the user and from the list of roles the permissions granted to the user. A user can have any number of roles assigned to them with the permissions associated with assigned roles being accumulative. That is the user has the permissions from all roles assigned to them.
During installation of the CMS a single role is created, Administrator, this role is assigned all the permissions in the system and cannot be edited or deleted. The initial user created during install is given the Administrator role.
New roles can be created by the system manager, permissions assigned to the roles and modified as required.
There are three types of permissions within the system: