What is Role-Based Security?

Role-based security is a user management system to segment your user types and secure parts of the control panel that some users may not need access to.  Users are individuals to whom you grant some level of control panel access. Each user has their own account secured by a username and password.  You manage your users by placing them in groups customized for their responsibilities.

Spark Pay online stores sets security levels for four predefined groups: Administrator, Customer Service, Product Manager, and Guest (1). Each of these has their own privileges.  For example, Administrator users have total access to all areas while Customer Service users can only access the customers, orders, and order tracking numbers areas.  Product Managers are allowed to enter areas related to the catalog and importing or exporting data. Guests have no preset privileges and must be granted access by editing that user group.

Spark Pay online stores allow you to customize these groups to fit your needs by editing the User Groups found under Settings>Security>User Roles/Groups in new admin console , and User Groups found under Global Settings in old admin console. Select the group for which you would like to edit accessibility. You can then specify each user group to be able to Create, Read, Update, or Delete different areas (2).  Create allows the user to input new items into an area, Read means that the user can view the area, Update gives the user the ability to edit the area, and Delete allows the user to delete any content within that area. Checking one of the boxes in the grayed-out top row acts as a "select all" for that column. Make sure to save all changes when you are finished. 

New groups may be created by clicking the ‘New’ button (3).  Give your group a name and check their access areas and save those changes.  When you're done, your new group should appear alphabetized with the other groups in the list. If you need to create two similar groups with extensive permissions, you can Clone the existing group and make the small changes to save it as a new group.  You may cancel your changes at any time to reset your group settings or delete a group entirely.  Please be aware that deleting is permanent, and cancelling after that action will not restore it.

User Accounts

You can manage your user accounts through the User Accounts area listed under People>Users in new admin console and through the User Accounts area listed under Global Settings in old admin console .  Here you will find each username along with the related email address, last logon, and group membership.  You can edit or delete existing users under the Action column or add a new user with the New Login button. For each user account, you create their password and have access to what groups they are in and whether or not they can view customers' credit card numbers. Spark Pay online stores provide fully customizable user groups and individual account managing to offer the most flexible role-based solution for all of your security needs.

User Permissions Defined

Use this page to define the specific areas to which this group has access. Each area is separated into 4 distinct permissions: create, which allows users to enter new records in the area, read, which allows users to view, but not create or edit, update, which allows users to update records, and delete, which allows users to delete records. An audit log of changes made by users is maintained here

ActiveCatalog - The active catalogs function is used to set which products are available for purchase on your individual stores. The active catalog allows you to show specific categories and subcategories on each of your micro or multi-stores.

AdCodes - An AdCode is a reference to a specific advertisement, usually a keyword or email campaign.  It shows where visitors, customers, and orders originate.  Spark Pay online stores use AdCodes to track statistics regarding your advertising campaigns

AdminSearch - Search features within the console of customers, products, and users

Affiliates - Affiliate marketing is a type of performance-based marketing in which a business rewards one or more affiliates for each visitor or customer brought by the affiliate's own marketing efforts.

API - Gives access to API which specifies how some software components should interact with each other. Used for many third-party programs and add-ons that work within Spark Pay online stores .

BackgroundWorkers -  User Processes,  involving user-supplied code in separate processes.

Banners - Images and logo editing

BatchProcess -  Background Jobs, Exports/Imports, a series of jobs running.

BatchProcessViewer - The viewing of background jobs and processes.

BlogCategories  - Organization of blog posts

BlogPosts - Editing and Creating of blog posts

Blogs -  A log of updated information in an organized date format which features functionality for discussion or information that allows users, admin users and customers to post comments on your site

Categories - Categories follow a branching structure with broad categories acting as root level identifiers and child categories refining the product listing as the user drills down.

ContentManagement - Management of content pages and products within the store.

Customers - Users that have registered or purchased items from your store.

CustomerTypes - A Customer Type is a group of visitors to your site that can be defined by you. It is useful in providing unique content to a group of visitors defined as a Customer Type.

CustomFields - A great tool for customizing Spark Pay online stores to meet your company's needs. They allow you to store information about customers, orders, products, or stores for use elsewhere in Spark Pay online stores .

CustomPaymentTypes - This allows for the creation of custom payment methods that do not already exist (example: credit cards, PayPal, etc..)

DataExport - This function allows users to run various data exports.

DataImport - This function allows users to run various data imports.

DirectedSearch - Search options and search terms

DiscountMethods - Allows the store owner to offer specialized discounts to customers.

EmailAlertAddresses - Allows for the changing or modification Alert Email addresses.

EmailEditor -  Allows email templates to be edited.

FileBrowser - This feature gives users the ability to upload or download files on the site’s server directly through the admin interface.

GiftCertificates - This privilege allows the user to create or manage gift certificates.

GlobalRegions - Regions for where items will can be ordered and delivered.

GridPublicLayouts - Layout manager that lays out a container's components in a rectangular grid.

MailingList - Generated marketing email campaign from merchant to customer.

Manufacturers - Used to determine the brand of products.

MicroStores -  A specific list of products located on it’s own page created to be marketed towards specific customers and customer types.

Orders - Allows or restricts any type of changes made to orders.

OrderStatuses - Permits or denies the changing of order statuses.

OrderTrackingNumbers - Tracking Numbers attached to Orders

PaymentGateways - Processor of payments

PPCIntegration - Pay per click marketing campaign

ProductAttributes - Attributes associated with products that allow the customer to filter products in a category based on commonalities about your products, much like a tag filter.

ProductStatuses - Changing and editing of product statuses

QuestionAnswer - Changes to the questions and answer widget.

QuickBooksConfiguration - Integration settings for Quickbooks sales management software by Intuit

Reports - Reporting of Sales, Marketing, Visitor Sessions & Error Logs in the Dashboard

Sessions - Viewing the sum of activity for one user/guest/customer of the store.

Shipping - Allows for any changes associated with shipping on the site, with the exception of adding and removing shipping and tracking info on orders.

ShoppingPortals - Multiple store fronts and microstores.

Sitemap - A list of pages of a website accessible to crawlers or users. It can either come in the form of a document used for planning Web Design, or a page that lists the pages on a web site typically organized in heirarchical fashion.

StoreSettings - This applies to making any changes to the actual store settings,

SysAdminOnly - Permissions applicable to the administrator.

TaxRates - Specific tax rate adjustments for various specific regions

Themes - Blocks or allows any type of modifications to settings associated with themes.

Thesaurus - Class to find related information in javascript in terms of notification and search features

UrlRedirecting - The pointing of specific content indexed in search engines to the corresponding content within Spark Pay online stores

UserAccounts - Accounts created for each specific user that allow or deny defined defined features of functions.

UserGroupPermissions - The permissions and allowed functionality for user groups

VariationGroups - Variants and Groups of products

Warehouses - Warehouses tell the store the locations that product will be shipped from.