Share via

2.9.1.2 Permission Level (Role)

  • Article

A role is a predefined set of permissions that grants users permission to perform related actions. Roles are defined at the site level, where a site can inherit roles from its parent site or have roles unique to it. All permissions in Windows SharePoint Services are managed through roles and all users will have roles. Rights are never directly assigned to a user. The default Windows SharePoint Services permission levels, or roles, are:

  • Limited Access

  • Read, Contribute

  • Design

  • Full Control

For example, the Limited Access role includes permissions that allow users to view specific lists, document libraries, list items, folders, or documents, when given the appropriate permissions.

It is also possible to add custom role definitions to the collection of roles, to include the specific set of rights required for the role, or to remove role definitions. For example, a specific scenario might require a user role where the user cannot see previous versions of a document. To achieve this, it is possible to create a custom contributor role where the View Versions and Delete Versions rights have been removed.

For more information about creating and removing roles, see [MSDN-SHPTSDK] for Windows SharePoint Services 3.0, and [MSDN-SHPTSDK4] for Microsoft SharePoint Foundation 2010.