Skip to main content
Version: 2026.1

Permissions

Workflow places support permission overrides that modify element permissions based on the current place. See Configuration Details for the full options reference.

Add multiple permission configurations based on conditions. The first entry where the condition evaluates to true is used.

Configuration Examples

Pimcore admins are allowed to publish and delete the object but for all other users it will be suppressed:


places:
closed:
permissions:
- condition: is_fully_authenticated() and 'ROLE_PIMCORE_ADMIN' in role_names
publish: true
delete: true
- publish: false
delete: false

Pimcore admins are allowed to modify (save, publish,...) the object but for all other users the save and delete button will be hidden. modify is a short hand for save, publish, unpublish, delete and rename:


places:
closed:
permissions:
- condition: is_fully_authenticated() and 'ROLE_PIMCORE_ADMIN' in role_names
modify: true
- modify: false

If multiple places provide a valid permission configuration the one with the highest priority will be used. The priority is based on the workflow priority (the workflow with the higher priority setting will win). Within a single workflow the order within the places section of the configuration file will be used.

To reference roles other than admin, use ROLE_<role name in uppercase>, e.g. ROLE_EDITOR for a role named "Editor".