Access control defines who can see, edit and manage a page. Since this web site is still in development we have to distinguish between the access control we want and the access control we have so far.
Access control is defined by role and by project group. Roles distinguish between unregistered users, registered users, and user admins. User admins can create, activate and delete users. Registered users can contribute material, comment on the contributions of others, and even edit some of them. User admins can also create, activate and delete users.
Personal pages can be seen by everyone but can only be edited by the registered user that created it and by the admins. Other types of pages can be edited by anyone that is registered and can see it, i.e., who subscribes to a project group which can see the page. That means you control who can see and edit a page by publishing a page to certain project groups only.
Ideally a page can only be edited by members of the project group it originally belongs to. Publishing a page to other project groups should only enable them to see and comment on the page, but not to edit it. That is, if you think the page of a project group you don't belong to should be changed you should write a comment and hope that one of the group members will take that advise and change the page.
We have not enabled this yet. If a project group allows you to see a page you can also edit it. Please don't do this. If a page belongs to a project group you are not member of, write a comment only.
