Partilhar via


Permissions available in SharePoint 2007

There's a few ways of specify what users can and cannot do within SharePoint.  The most blatent one is whether a user can actually access a site or not.  Beyond that there are some very specific ways that Architects can control what users are allowed to do and ways that Administrators can manage the user base.

 The most granular way is through using permissions. These are broken down into three groups:

  1. List Permissions
  2. Site Permissions
  3. Personal Permissions

But what are these pemissions?  Well here's a list:

List Permissions

Description

Manage Lists

Create and delete lists, add or remove columns in a list, and add or remove public views of a list. 

Override Check Out

Discard or check in a document which is checked out to another user. 

Add Items

Add items to lists, add documents to document libraries, and add Web discussion comments. 

Edit Items

Edit items in lists, edit documents in document libraries, edit Web discussion comments in documents, and customize Web Part Pages in document libraries. 

Delete Items

Delete items from a list, documents from a document library, and Web discussion comments in documents. 

View Items

View items in lists, documents in document libraries, and view Web discussion comments. 

Approve Items

Approve a minor version of a list item or document. 

Open Items

View the source of documents with server-side file handlers. 

View Versions

View past versions of a list item or document. 

Delete Versions

Delete past versions of a list item or document. 

Create Alerts

Create e-mail alerts. 

View Application Pages

View forms, views, and application pages. Enumerate lists. 

 

Site Permissions

Description

Manage Permissions

Create and change permission levels on the Web site and assign permissions to users and groups. 

View Usage Data

View reports on Web site usage. 

Create Subsites

Create subsites such as team sites, Meeting Workspace sites, and Document Workspace sites. 

Manage Web Site

Grants the ability to perform all administration tasks for the Web site as well as manage content. 

Add and Customize Pages

Add, change, or delete HTML pages or Web Part Pages, and edit the Web site using a Windows SharePoint Services-compatible editor. 

Apply Themes and Borders

Apply a theme or borders to the entire Web site. 

Apply Style Sheets

Apply a style sheet (.CSS file) to the Web site. 

Create Groups

Create a group of users that can be used anywhere within the site collection. 

Browse Directories

Enumerate files and folders in a Web site using SharePoint Designer and Web DAV interfaces. 

Use Self-Service Site Creation

Create a Web site using Self-Service Site Creation. 

View Pages

View pages in a Web site. 

Enumerate Permissions

Enumerate permissions on the Web site, list, folder, document, or list item. 

Browse User Information

View information about users of the Web site. 

Manage Alerts

Manage alerts for all users of the Web site. 

Use Remote Interfaces

Use SOAP, Web DAV, or SharePoint Designer interfaces to access the Web site. 

Use Client Integration Features

Use features which launch client applications. Without this permission, users will have to work on documents locally and upload their changes. 

Open

Allows users to open a Web site, list, or folder in order to access items inside that container. 

Edit Personal User Information

Allows a user to change his or her own user information, such as adding a picture. 

Personal Permissions

Description

Manage Personal Views

Create, change, and delete personal views of lists. 

Add/Remove Personal Web Parts

Add or remove personal Web Parts on a Web Part Page. 

Update Personal Web Parts

Update Web Parts to display personalized information. 

Some of these permissions rely on others to correctly work.  Mark Arand provides a very useful spreadsheet which outlines these permissions as well as which ones are required to achieve specific roles and functions.  His blog entry can be found here.