Within Salesforce B2C Commerce, you can import and export access roles and users through the Site Import & Export module in Administration > Site Development > Site Import & Export.
When a role in an import file has no locale permission, the role is given permissions on all globally active locales (and a data warning is logged). This is because, starting with Release 16.9, a role export file always has locale-level permissions. If a file doesn't have locales, it must have been created with a previous release when all roles had access to all locales. To provide for backward compatibility, existing roles without locale permissions are granted permissions on all locales when an old file is imported.
To understand how permissions are imported, you must understand the concept of a resource path. A resource path is a semantic, human-readable ID that denotes a certain entity in the system. Currently, the system recognizes three kinds of resource paths: a resource path that denotes a Business Manager module, a resource path that denotes the merchant's organization, and a resource path that denotes a particular site of the merchants organization. The advantage of a semantic ID is that it remains constant over different instances (that is, development, production, staging, and sandbox).
The syntax of the resource path is:
BUSINESSMGR/SystemMenu|CustomMenu/<ID of the organization>/-|<ID of the site>/<ID of the Business Manager module>
There are only two types of resource paths usable in conjunction with functional permissions:
The syntax of the resource path is:
OBJECT/Organization|Site/<ID of the organization>/<ID of the site>
Depending on the type of functional permission, either a resource path to an organization or to a site can be used. Examples of valid resource paths for functional permissions are:
OBJECT/Organization/Sites
OBJECT/Site/Sites/SiteGenesis
OBJECT/Site/Sites/Storefront
Example of invalid resource paths for functional permissions are:
OBJECT/Site/Sites
OBJECT/Organization/Sites/Storefront
The following functional permissions are currently provided by the system:
Permission | Scope | Description | Valid Resource Path |
---|---|---|---|
Login_On_Behalf | Site | Lets administrators login on behalf of a customer into storefront. | OBJECT/Site/Sites/YourShopHere |
WebDAV_Transfer_Files | Organization | Allows accessing log files or impex directories on the server via WebDAV | OBJECT/Organization/Sites |
WebDAV_Manage_Customization | Organization | Allows access to directories of all custom cartridges via WebDAV | OBJECT/Organization/Sites |
The user import includes:
During import: