Jump to main content Jump to doc navigation

What is an ACL (Access Control List)?

An ACL, or Access Control List, is a set of Permissions attached to an object. More information on ACLs can be found here in Wikipedia.


In MODx, ACLs can be applied to any modAccessibleObject. Primarily MODx Revolution 2.0 allows for ACLs on Resources and Contexts.

Context ACL

A Context ACL is referenced of 4 parts:

This means that one can assign a ACL to a Context that will apply to:

  • All the Users in a User Group
  • ...with at least the Minimum Role specified
  • ...that will give the Users all the Permissions in the Access Policy assigned.

Resource ACL

Resource ACLs behave a bit differently, and basically allow you to restrict access to Resources (such as Documents, Weblinks, etc) by Resource Groups. They are comprised of 5 Parts:

This means that an ACL applied to a Resource Group will:

  • Effect all the Users in the specified User Group
  • ... with at least the Minimum Role specified
  • ... give the Resource Permissions (save, load, delete, etc) in the Policy specified
  • ... to all the Resources in the Resource Group

See Also

  1. Users
  2. User Groups
  3. Resource Groups
  4. Roles
  5. Policies
  6. Permissions
    1. Permissions - Administrator Policy
    2. Permissions - Resource Policy
  7. ACLs
  8. PolicyTemplates
  9. Security Tutorials
  10. Giving a User Manager Access
  11. Making Member-Only Pages
  12. Creating a Second Super Admin User
  13. Restricting an Element from Users
  14. More on the Anonymous User Group
  15. Hardening MODX Revolution
  16. Security Standards
  17. Troubleshooting Security
  18. Resetting a User Password Manually