Permission to only Edit Pages (not books) for Selected Users #4500

New Issue

Closed

opened 2026-02-05 09:01:37 +03:00 by OVERLORD · 5 comments

OVERLORD commented 2026-02-05 09:01:37 +03:00

Owner

Copy Link

Originally created by @mgmwhite on GitHub (Mar 7, 2024).

Attempted Debugging

• I have read the debugging page

Searched GitHub Issues

• I have searched GitHub for the issue.

Describe the Scenario

Hi all,
is it somehow possible to enable a group of users to create and edit pages/chapters but not the containig book itself without having to micromanage every new page that gets created?

So basically have group "Admins" create new books, that group "editors" are only allowed to fill with content and a group "viewers" that can only read the content.

I tried different setups but either the Editors could edit both pages/chapters and books or neither of them.
Would be great to know if this is somehow achievable.

Thanks!

PS: Same thing goes for being able to create and edit books but not the containig shelf, so one level "higher". Could not figure out how to do that either.

Exact BookStack Version

v24.02

Log Content

No response

Hosting Environment

.

Originally created by @mgmwhite on GitHub (Mar 7, 2024). ### Attempted Debugging - [X] I have read the debugging page ### Searched GitHub Issues - [X] I have searched GitHub for the issue. ### Describe the Scenario Hi all, is it somehow possible to enable a group of users to create and edit pages/chapters but not the containig book itself without having to micromanage every new page that gets created? So basically have group "Admins" create new books, that group "editors" are only allowed to fill with content and a group "viewers" that can only read the content. I tried different setups but either the Editors could edit both pages/chapters **and** books or neither of them. Would be great to know if this is somehow achievable. Thanks! PS: Same thing goes for being able to create and edit books but not the containig shelf, so one level "higher". Could not figure out how to do that either. ### Exact BookStack Version v24.02 ### Log Content _No response_ ### Hosting Environment .

OVERLORD added the 🐕 Support label 2026-02-05 09:01:37 +03:00

OVERLORD closed this issue 2026-02-05 09:01:38 +03:00

OVERLORD commented 2026-02-05 09:01:41 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Mar 7, 2024):

Hi @mgmwhite,
You can do this via role permissions, since you can manage those per-content type, but as soon as you start applying permissions to specific items things can become more micro-managey for what you want, since permissions will cascade (from books and chapters).

@ssddanbrown commented on GitHub (Mar 7, 2024): Hi @mgmwhite, You can do this via role permissions, since you can manage those per-content type, but as soon as you start applying permissions to specific items things can become more micro-managey for what you want, since permissions will cascade (from books and chapters).

OVERLORD commented 2026-02-05 09:01:47 +03:00

Author

Owner

Copy Link

@mgmwhite commented on GitHub (Mar 11, 2024):

Hi @ssddanbrown
thanks for replying! I tried a few different settings, but none of them really met the requirement. I think to simply map the process, there would need to be an additional boolean field in the book permissions, maybe called "Update Content" or something like that. If this is set, the user should only be able to edit the content of a book, but not the book itself. This would be great, for example, to allow individual users to use books to publish stuff without "jeopardising" the established book infrastructure.
What do you think about this?

@mgmwhite commented on GitHub (Mar 11, 2024): Hi @ssddanbrown thanks for replying! I tried a few different settings, but none of them really met the requirement. I think to simply map the process, there would need to be an additional boolean field in the book permissions, maybe called "Update Content" or something like that. If this is set, the user should only be able to edit the content of a book, but not the book itself. This would be great, for example, to allow individual users to use books to publish stuff without "jeopardising" the established book infrastructure. What do you think about this?

OVERLORD commented 2026-02-05 09:01:50 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Mar 11, 2024):

@mgmwhite I can see how that would help, and why you might want that option.

Personally though I don't want to add additional complexity to the permission system so I'd not be keen to add this without significant demand, of which we have not observed so far.

Another potential option for this could be via the request in #4832, for roles to become owners.
There's also some prior discussion related to that in #3964.

@ssddanbrown commented on GitHub (Mar 11, 2024): @mgmwhite I can see how that would help, and why you might want that option. Personally though I don't want to add additional complexity to the permission system so I'd not be keen to add this without significant demand, of which we have not observed so far. Another potential option for this could be via the request in #4832, for roles to become owners. There's also some prior discussion related to that in #3964.

OVERLORD commented 2026-02-05 09:01:52 +03:00

Author

Owner

Copy Link

@Valaron-Jakob commented on GitHub (May 10, 2025):

To be able to differenciate in permission between the parent and child items would be well appreciated for us as well.

Our UseCases:

• Allowing users to collaborate inside a book creating their own pages without being able to edit or remove those of other users.
• Have a couple of these collaboration spaces inside different books for different groups.
• Maintaining the "least privileges" priciple, only giving access to specific shelves/books/pages that are ready to be released. Keeping everything else internal. (Allowing normal users to do nothing, except inside specific books/shelves - not the other way around)

Some Examples:

• GMs posting resources, concepts and good practices in a specific area
• Players posting city descriptions and event-notifications
• Books for different guilds that are managed by the administrators but can be filled by the guild

Proposed Solutions:
"Create" permissions already only affects the contet, whereas "Update" and "Delete" allow to delete the book/shelf. Allowing to be able to differenciate between them would be gamechanging for us.

Solution I - Individual Book & Content permission overrides

Solution II - Dropdowns for granular Create & Delete perission overrides

Thank you for reading and considering this

@Valaron-Jakob commented on GitHub (May 10, 2025): To be able to differenciate in permission between the parent and child items would be well appreciated for us as well. **Our UseCases**: - Allowing users to collaborate inside a book creating their own pages without being able to edit or remove those of other users. - Have a couple of these collaboration spaces inside different books for different groups. - Maintaining the "least privileges" priciple, only giving access to specific shelves/books/pages that are ready to be released. Keeping everything else internal. (Allowing normal users to do nothing, except inside specific books/shelves - not the other way around) **Some Examples**: - GMs posting resources, concepts and good practices in a specific area - Players posting city descriptions and event-notifications - Books for different guilds that are managed by the administrators but can be filled by the guild **Proposed Solutions**: "Create" permissions already only affects the contet, whereas "Update" and "Delete" allow to delete the book/shelf. Allowing to be able to differenciate between them would be gamechanging for us. Solution I - Individual Book & Content permission overrides  Solution II - Dropdowns for granular Create & Delete perission overrides  Thank you for reading and considering this

OVERLORD commented 2026-02-05 09:01:56 +03:00

Author

Owner

Copy Link

@ssddanbrown commented on GitHub (Sep 3, 2025):

Since this support request is quite old, I'm going to close this off.

@ssddanbrown commented on GitHub (Sep 3, 2025): Since this support request is quite old, I'm going to close this off.

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

development

l10n_development

release

v26-03

ci_fixing

codeberg-actions

lexical_may_2026

MilnerMart/development

sort_rule_text

GamerClassN7/impersonations-for-admin

Zhey-on/feature/csp-image-css-controls-6033

tortillas5/development

clauvaldez/mfaReset

llm_only

vectors

McTom234/oidc-key-algorithms

docker_env

drawio_rendering

user_permissions

ldap_host_failover

svg_image

prosemirror

captcha_example

fix/video-export

v26.03.4

v26.03.3

v26.03.2

v26.03.1

v26.03

v25.12.9

v25.12.8

v25.12.7

v25.12.6

v25.12.5

v25.12.4

v25.12.3

v25.12.2

v25.12.1

v25.12

v25.11.6

v25.11.5

v25.11.4

v24.11.4

v25.11.3

v25.11.2

v25.11.1

v25.11

v25.07.3

v25.07.2

v25.07.1

v25.07

v25.05.2

v25.05.1

v25.05

v25.02.5

v25.02.4

v25.02.3

v25.02.2

v25.02.1

v25.02

v24.12.1

v24.12

v24.10.3

v24.10.2

v24.10.1

v24.10

v24.05.4

v24.05.3

v24.05.2

v24.05.1

v24.05

v24.02.3

v24.02.2

v24.02.1

v24.02

v23.12.3

v23.12.2

v23.12.1

v23.12

v23.10.4

v23.10.3

v23.10.2

v23.10.1

v23.10

v23.08.3

v23.08.2

v23.08.1

v23.08

v23.06.2

v23.06.1

v23.06

v23.05.2

v23.05.1

v23.05

v23.02.3

v23.02.2

v23.02.1

v23.02

v23.01.1

v23.01

v22.11.1

v22.11

v22.10.2

v22.10.1

v22.10

v22.09.1

v22.09

v22.07.3

v22.07.2

v22.07.1

v22.07

v22.06.2

v22.06.1

v22.06

v22.04.2

v22.04.1

v22.04

v22.03.1

v22.03

v22.02.3

v22.02.2

v22.02.1

v22.02

v21.12.5

v21.12.4

v21.12.3

v21.12.2

v21.12.1

v21.12

v21.11.3

v21.11.2

v21.11.1

v21.11

v21.10.3

v21.10.2

v21.10.1

v21.10

v21.08.6

v21.08.5

v21.08.4

v21.08.3

v21.08.2

v21.08.1

v21.08

v21.05.4

v21.05.3

v21.05.2

v21.05.1

v21.05

v21.04.6

v21.04.5

v21.04.4

v21.04.3

v21.04.2

v21.04.1

v21.04

v0.31.8

v0.31.7

v0.31.6

v0.31.5

v0.31.4

v0.31.3

v0.31.2

v0.31.1

v0.31.0

v0.30.7

v0.30.6

v0.30.5

v0.30.4

v0.30.3

v0.30.2

v0.30.1

v0.30.0

v0.29.3

v0.29.2

v0.29.1

v0.29.0

v0.28.3

v0.28.2

v0.28.1

v0.28.0

v0.27.5

v0.27.4

v0.27.3

v0.27.2

v0.27.1

v0.27

v0.26.4

v0.26.3

v0.26.2

v0.26.1

v0.26.0

v0.25.5

v0.25.4

v0.25.3

v0.25.2

v0.25.1

v0.25.0

v0.24.3

v0.24.2

v0.24.1

v0.24.0

v0.23.2

v0.23.1

v0.23.0

v0.22.0

v0.21.0

v0.20.3

v0.20.2

v0.20.1

v0.20.0

v0.19.0

v0.18.5

v0.18.4

v0.18.3

v0.18.2

v0.18.1

v0.18.0

v0.17.4

v0.17.3

v0.17.2

v0.17.1

v0.17.0

v0.16.3

v0.16.2

v0.16.1

v0.16.0

v0.15.3

v0.15.2

v0.15.1

v0.15.0

v0.14.3

v0.14.2

v0.14.1

v0.14.0

v0.13.1

v0.13.0

v0.12.2

v0.12.1

v0.12.0

v0.11.2

v0.11.1

v0.11.0

v0.10.0

v0.9.3

v0.9.2

v0.9.1

v0.9.0

v0.8.2

v0.8.1

v0.8.0

v0.7.6

v0.7.5

v0.7.4

v0.7.3

0.7.2

v.0.7.1

v0.7.0

v0.6.3

v0.6.2

v0.6.1

v0.6.0

v0.5.0

Labels

Clear labels

🎨 Design

📖 Docs Update

🐛 Bug

🐛 Bug

:cat2:🐈 Possible duplicate

💿 Database

☕ Open to discussion

💻 Front-End

🐕 Support

🚪 Authentication

🌍 Translations

🔌 API Task

🏭 Back-End

⛲ Upstream

🔨 Feature Request

🛠️ Enhancement

🛠️ Enhancement

🛠️ Enhancement

❤️ Happy feedback

🔒 Security

🔍 Pending Validation

💆 UX

📝 WYSIWYG Editor

🌔 Out of scope

🔩 API Request

:octocat: Admin/Meta

🖌️ View Customization

❓ Question

🚀 Priority

🛡️ Blocked

🚚 Export System

♿ A11y

🔧 Maintenance

> Markdown Editor

pull-request

Mirrored from GitHub Pull Request

No Label 🐕 Support

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/BookStack#4500