<div>
You can find out what roles someone has, and hide some elements when the required role isn't there. Try with <br />

<pre><code id="code-20-42945212-1">roles= session.evaluate(&quot;@UserRoles&quot;);
isAdmin= roles.contains(&quot;[Admin]&quot;);</code></pre>
<br />
Usually, access to documents is done using Reader and Author fields. They work exactly the same as in Notes.<br />
<br />
$Author field: is that your own field? You should never define fields starting with a '$', these names are reserved for internal use.
</div>


You can find out what roles someone has, and hide some elements when the required role isn't there. Try with


roles= session.evaluate("@UserRoles");
isAdmin= roles.contains("[Admin]");


Usually, access to documents is done using Reader and Author fields. They work exactly the same as in Notes.

$Author field: is that your own field? You should never define fields starting with a '$', these names are reserved for internal use.

<div>
<div class="content wysiwyg-content">
There is a DB which contains some XPages.<br />
<br />
End-users accesses http;//<a href="http://www.xpage.com/usersettings.xsp" rel="ugc">www.xpage.com/usersettings.xsp</a> to set personal settings.<br />
Admin-users accesses http;//<a href="http://www.xpage.com/adminsettings.xsp" rel="ugc">www.xpage.com/adminsettings.xsp</a> to set system setttings.<br />
<br />
In this case, how to design XPages security? The Notes DB has [Admin] role which represents Admin users.<br />
I'd like to hide to access the admin setting XPage from end-users and set the documents security (like $Author field) . Is it possible?
</div>
</div>


There is a DB which contains some XPages.

End-users accesses http;//www.xpage.com/usersettings.xsp to set personal settings.
Admin-users accesses http;//www.xpage.com/adminsettings.xsp to set system setttings.

In this case, how to design XPages security? The Notes DB has [Admin] role which represents Admin users.
I'd like to hide to access the admin setting XPage from end-users and set the documents security (like $Author field) . Is it possible?

Access control in XPages

Programming includes both the specifics of the language you’re using, like Visual Basic, .NET, Java and others, but also the best practices in user experience and interfaces and the management of projects, version control and development. Other programming topics are related to web and cloud development and system and hardware programming.