By default, Merchandising assigns user roles different levels of access to price lists. For example, by default, users with the EPub-Admin role can create price list folders but users with the EPub-User role cannot. You can change access rights for individual price lists through the Security tab in the Merchandising Price Lists or Price Lists view. These rights replace the default security policy for the price list. Before you change price list access, read the chapter ATG Business Control Center Security in the ATG Business Control Center Administration and Development Guide to learn about configuring asset security.
To set access rights for a price list:
In a Managing Commerce Assets project, navigate to Price Lists.
Click the price list whose access rights you want to change.
Click the Security tab to display the default access rights for this price list.
Note: Your own user profile must have Write, View Access Rights, and Set Access Rights privileges for price lists. Otherwise, the Security tab does not appear in the Price Lists view.
Clear the Use Default Security Policy checkbox. As described earlier, the Default Security Policy is the set of rights specified in the repository definition file for all items of this type. When you choose to define individual access rights for this price list, you are replacing the default rights.
When you clear the checkbox, three buttons appear that you can use to specify access rights for this price list:
Add Role: Allows you to define access rights to this price list for one or more roles. The roles can be global or organizational. The rights will apply to any user who has the specified role.
Add Organization: Allows you to define access rights to this price list for one or more organizations. The rights will apply to any user or role that is assigned to the specified organization.
Add User: Allows you to define access rights to this price list for one or more individual user profiles.
The image below shows the Security tab with these button enabled:
Click the appropriate button and use the asset picker to select the roles, organizations, or users for which you want to define access rights. Note that you can select a combination of all three if required.
Important: You must specify access rights for all principals that need access to this price list.
For each access right, click the corresponding check box and select Allow, Deny, or Unspecified, as applicable. Unspecified means that the default security policy setting is used for this principal.
To remove a role, organization, or user from this tab, click the Remove icon for that item.
When you have finished setting access rights for this folder, click Save. If an error appears informing you that you cannot remove List and Read access for yourself, make sure that you have specified access rights for your own profile or a role that is assigned to you.
