I need to create a user that will have the right to edit data only from certain tabs ('Tab1' and 'Tab2').
What I did:
1) 'UserGroup1' was created with 'Change' rights;
2) 'Delete' access level was setuped for all tabs exept tabs for 'UserGroup1';
As a result user see only this tabs ('Tab1' and 'Tab2') but 'on-page editing' allow to change other properties.
How can I disable 'on-page editing' for this users?
How can I disable access to header (with 'Name', 'Name in URL', 'Tool' ... properties)?
I found article with solution for old version http://www.markeverard.com/2012/02/13/role-and-user-based-property-security-for-episerver/.
I'll check it out in EPiServer 7.5
For granular permissions you might want to have a look at MetaDataExtender: http://world.episerver.com/Forum/Developer-forum/EPiServer-7-CMS/Thread-Container/2013/5/Is-it-possible-to-pinpoint-access-rights-on-properties/
I completely rolled up and forgot to write about how we unscrew. there are another links on this topic, which may be useful