Microsoft Office Tutorials and References
In Depth Information
Add and Customize Pages from the web application so that even site owners, designers, or other
contributors can’t get this permission—it’s just not available for any permission level in any site
collection within the web application.)
When you do need to disable individual user permissions for the web application, select the
web application on the Manage Web Applications page, and click the User Permissions button.
You’ll see the page shown in Figure 10.53.
When you uncheck a permission, it is removed from the web application and no longer
shows up as part of any permission level, not even Full Control.
Web Part Security
Another way you can lock down individual web applications is by using the Web Application
Web Part Security button on the ribbon. It displays the Security For Web Part Pages page, shown
in Figure 10.54.
This has three settings, each with two options: Allow or Prevent.
Web Part Connection Controls the ability to have web parts connect to other web parts. As
discussed in Chapter 5, this is a powerful and useful ability. It is enabled (Allow) by default.
Web part connections can cause security filtering issues with search (when you connect a
secure list to one that isn’t so secure, secure items can show up in search results where they
shouldn’t), so in some situations it might be important not to allow them.
Online Web Part Gallery Backward-compatible with custom online galleries. It once
permitted users to access Microsoft’s online web part gallery when they have a web part page
in edit mode, so they can download and add web parts to their pages. That Microsoft online
web gallery no longer exists, but there are some companies that require this setting. This is
enabled (Allow) by default.