Return to doc.sitecore.com

Valid for Sitecore 5.2, 5.1.1
  Security
Prev

By default, security is always enabled on a database. This means that access to individual items in the database is checked against the current user’s credentials. If a user does not have the appropriate rights, the action is denied.

Sometimes it makes sense to skip these checks. The property 'SecurityEnabled' allows you to do so:

<database id="myDB" singleInstance="true" type="Sitecore.Data.Database, Sitecore.Kernel">
 <param desc="name">$(id)</param>
  ...
  <securityEnabled>false</securityEnabled>
</database>

Also, a database may be marked as read-only to disable all modifications to the database regardless of access rights:

<database id="myDB" singleInstance="true" type="Sitecore.Data.Database, Sitecore.Kernel">
 <param desc="name">$(id)</param>
  ...
  <readOnly>true</readOnly>
</database>

Currently, this setting will only affect the Sitecore client application. It is not used by the API, but this will probably change in a future version.


Prev