This technical article was first published over 2 years ago and may discuss features and approaches that are no longer relevant for the current version of the platform.

I’ve been dealing with more of EPiServer’s security and access control functionality recently. See my recent post about creating an attribute based framework for managing security at the property level as a example.

When it comes to enterprise level security requirements, governance is the key. This means not just having the ability to define your security policy (through an admin panel for example) but also having a current and clear overview of your security setup.

Whilst EPiServer provides this for the creating page functionality (Set Access Rights page and the page-tree), it doesn’t offer this for Page Types. Certainly this is something we can improve upon so I’ve put together a simple Admin Plugin (built using MVC – why would you use anything else these days?)

The plugin lists each Page Type, whether it is available in edit mode, the users and roles who can create pages of that page type and also the allowable child page types for that page type.

A Nuget package (FortuneCookie.PageTypeSecurityOverview) built against EPiServer 6R2 is available from the EPiServer Nuget feed. The source code is available on GitHub – https://github.com/markeverard/FortuneCookie.PageTypeSecurityOverview