Access levels
In ispmanager, access masks are used to restrict access to functions, fields, and other features. The principles of operation and applicable values are described below.
Predefined names
| Name | Level | Mask type | Description |
|---|---|---|---|
nobody | 0 | EqLevel | Unauthorized users only |
public | 1 | MinLevel | All authorized users (access cannot be restricted via the permissions module) |
registered | 2 | MinLevel | All authorized users |
email | 9 | EqLevel | Mailbox only |
user | 16 | EqLevel | Regular user only |
reseller | 24 | EqLevel | Reseller only |
admin | 29 | EqLevel | Panel administrator only |
super | 30 | EqLevel | Server administrator only |
all | 0 | MinLevel | Everyone, including unauthorized users |
Numeric values
You can specify numbers directly as a string; they are interpreted as the EqLevel for the specified level:
"16"is equivalent to"user""29"is equivalent to"admin"
Modifiers + and -
Suffixes only work with names/numbers describing a single level (EqLevel). They cannot be used with all, registered, or public.
+(following a name/number) — the specified level and above (MinLevel):"user+"— users, resellers, admins, super, internal"admin+"— administrators and above"16+"— everyone with a level >= 16
-(following a name/number) — the specified level and below (MaxLevel, strictly less):"admin-"— everyone with a level < 29 (not including admin)"user-"— everyone with a level < 16
Comma-separated list (space)
Multiple values can be combined by separating their masks with a |:
"admin,super+"— equivalent to"admin+"(admin + super + internal)"user,reseller"— only users and resellers"nobody,registered"— everyone, including unauthorized users (like"all")