Enabling page-based access control for web content pages
Typically, when you render content items in a web content viewer, access control enforcement on those content items is handled by IBM® Web Content Manager. However, you can use page-based access control to delegate access control enforcement to the web content page that is used to display the content.
About this task
Page-based access control can be specified for individual content associations of a page. When page-based access control is enabled for a specific association, Web Content Manager does not perform additional access control checks when the associated site area contains the rendered content. This content includes not only direct children of the associated site area but also any nested site areas and their related content. Instead, the access control enforcement layer assumes that the same level of access that is granted on the page also applies to the rendered content. The affected content also includes any content items or components that are loaded during the rendering of the target content item. As a result, rendering performance is improved. If the viewer renders content that is not contained in the associated site area, normal access control enforcement is performed.
Page-based access control affects only the access control enforcement that is triggered by the web content viewer. Other access paths, such as the access control that is used by the search crawler, are not affected. In addition, Web Content Manager resources like images that are loaded directly by the browser are also not affected.